Full Disclosure mailing list archives
Re: Question about the new Xupiter toolbar
From: Brian McWilliams <brian () pc-radio com>
Date: Thu, 30 Jan 2003 16:39:29 -0500
At 12:40 PM 1/30/2003, Richard M. Smith wrote:
Hi, Has anyone looked into this new Xupiter toolbar to see how it is being installed on people's computer? In particular is it using some IE security hole for the install or does it just use the standard ActiveX drive-by download mechanism?
Richard, try it yourself? Go to http://www.xupiter.com/search2/install/install.htmlEven with IE set to the "default" (medium) security setting for the Internet zone, you should get a pop-up prompting whether you want to install Xupiter.
Hardly a "driveby" download. Maybe there are other instances of the ActiveX out there that work differently. But I'm told that IE by default prompts before installing signed ActiveX.
In other words, you have to *lower* Microsoft's default security settings (seldom a good idea) to get a drive-by install.
Brian _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- Question about the new Xupiter toolbar Richard M. Smith (Jan 30)
- Re: Question about the new Xupiter toolbar Brian McWilliams (Jan 30)
- Re: Question about the new Xupiter toolbar Thor Larholm (Jan 31)
- Origin of the term "driveby download" Richard M. Smith (Jan 31)
- Re: Origin of the term "driveby download" Brian McWilliams (Jan 31)
- RE: Re: Origin of the term "driveby download" Geo (Jan 31)
- RE: Re: Origin of the term "driveby download" Brian McWilliams (Jan 31)
- RE: Origin of the term "driveby download" Richard M. Smith (Jan 31)
- Origin of the term "driveby download" Richard M. Smith (Jan 31)
- Re: Origin of the term "driveby download" Thor Larholm (Jan 31)
- Re: Origin of the term "driveby download" madsaxon (Jan 31)
- RE: Origin of the term "driveby download" Richard M. Smith (Jan 31)