Full Disclosure mailing list archives

Previous By Date Next
Previous By Thread Next

RE: Re: Several Things about IE bugs

From: "Poof" <gui () goddessmoon org>
Date: Mon, 15 Dec 2003 10:59:15 -0500
*starts to remember why he doesn't have windows installed on a 'normal'
path.

Meh. -_- What happens with these exploits if you use %SystemRoot% instead?
Will that work within IE?

~


-----Original Message-----
From: full-disclosure-admin () lists netsys com [mailto:full-disclosure-
admin () lists netsys com] On Behalf Of http-equiv () excite com
Sent: Monday, December 15, 2003 10:13 AM
To: bugtraq () securityfocus com; NTBugtraq () listserv ntbugtraq com
Cc: full-disclosure () lists netsys com
Subject: [Full-disclosure] Re: Several Things about IE bugs



Unbelievable. Yet another 'silent delivery and installation of an
executable on a target computer. No client input other than viewing
a web page ' fully patched XP and Internet Explorer 6 series of
browsers:

http://www.safecenter.net/UMBRELLAWEBV4/1stCleanRc/1stCleanRc-
Xp/index.html

All one needs to do is point a spoofed link to something like this.

Can the so-called "PCHealth" gimmick be uninstalled?


--
http://www.malware.com







_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
Previous By Date Next
Previous By Thread Next

Current thread: