Bugtraq mailing list archives
RE: TXT or HTML? -- IE NEW BUG
From: arivanov () sigsegv cx
Date: Sat, 28 Jul 2001 09:40:04 +0100 (BST)
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi, I may be terribly mistaken, but I think that this to some extent has been discussed previously on Bugtraq. I cannot get through to the securityfocus web site all morning so pls excuse me for not quoting the exact post where this was mentioned the first time. Quoting from memory, so excuse me for any discrepancies with the original post (it was more than 6 months ago): IE ignores not just the extension. If I recall correctly mime types supplied by a server are happily ignored as well. What happens is IE looks at the first 200 bytes or so and desides based on "magic" first, looks the mime type/extension later. So it is not just HTML. On 27-Jul-2001 cr4zybird wrote:
TXT or HTML? -- IE NEW BUG vulnerable programs: IE4 ,IE5 ,IE5,IE6 ,Microsoft Word ,Microsoft Excel,Microsoft PowerPoint, Tencent explorer (I've tested all the versions of IE that i can find, they are all vulnerable) description: IE doesn't recognize the extensions of files, which may contain some html code. Write a HTML file on NOTEPAD. save it as *.txt. upload to any server.then use IE to visit this page.Found: IE excuted the HTML code which contained in
[snip] Brgds, - ---------------------------------- Anton R. Ivanov ARI2-RIPE Today's deliverables will have to be delayed because: Borg implants are failing - ---------------------------------- -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.4 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQE7Ynpk4QelTkllq+4RAo1AAKDXrjbc1zma9B05U3qJ+pIP3YkNlwCgyPTl jAvrcdTryfWap7kVP3jsoas= =qDAB -----END PGP SIGNATURE-----
Current thread:
- Re: TXT or HTML -- IE NEW BUG: not that new, but..., (continued)
- Re: TXT or HTML -- IE NEW BUG: not that new, but... eric (Jul 28)
- Re: TXT or HTML? -- IE NEW BUG Dylan Griffiths (Jul 28)
- Re: TXT or HTML? -- IE NEW BUG bjarne bingo (Jul 28)
- Re: TXT or HTML? -- IE NEW BUG Nathan Neulinger (Jul 28)
- Re: TXT or HTML? -- IE NEW BUG Magnus Bodin (Jul 29)
- Re: TXT or HTML? -- IE NEW BUG Justin Nelson (Jul 29)
- Re: TXT or HTML? -- IE NEW BUG Aaron Whiteman (Jul 29)
- Re: TXT or HTML? -- IE NEW BUG Justin Nelson (Jul 30)
- Re: TXT or HTML? -- IE NEW BUG Magnus Bodin (Jul 29)
- Re: TXT or HTML? -- IE NEW BUG Fred Oliveira (Jul 28)
- Re: TXT or HTML? -- IE NEW BUG Tom Laermans (Jul 29)
- RE: TXT or HTML? -- IE NEW BUG arivanov (Jul 28)
- RE: TXT or HTML? -- IE NEW BUG Daniel Lukasiak (Jul 29)
- Re: TXT or HTML? -- IE NEW BUG Trevor O'Donnal (Jul 28)
- RE: TXT or HTML? -- IE NEW BUG Microsoft Security Response Center (Jul 29)
- RE: TXT or HTML? -- IE NEW BUG Rebecca Kastl (Jul 29)
- Re: TXT or HTML? -- IE NEW BUG Oliver Bleutgen (Jul 30)
- RE: TXT or HTML? -- IE NEW BUG Deirdre Warshall (Jul 30)
- Re: TXT or HTML? -- IE NEW BUG Aaron Bentley (Jul 30)
- Re: CGI, PATH_INFO, convenience/security (TXT or HTML? -- IE NEW BUG) Peter W (Jul 31)
- Re: CGI, PATH_INFO, convenience/security (TXT or HTML? -- IE NEW BUG) Marc Slemko (Jul 31)
- Re: CGI, PATH_INFO, convenience/security (TXT or HTML? -- IE NEW BUG) Peter W (Jul 31)