Full Disclosure mailing list archives

Re: RE: Internet explorer 6 on windows XP allows exection of arbitrary code ( and opera and Mozilla too)

From: Valdis.Kletnieks () vt edu
Date: Fri, 26 Sep 2003 14:46:40 -0400

On Fri, 19 Sep 2003 15:41:41 +0500, M Saqib Ilyas <msaqibilyas () myrealbox com>  said:

Dear all,
Chopping off the long thread and leaving a few lines for reference. If one
switches on a Windows box from IE to Mozilla or some other for browsing the
web, still the IE control would be everywher in your UI, My Computer,
Network Neighborhood etc. Granted, you would be safe from attacks being
launched through web pages attempting to execute arbitrary or malicious
code, but if M$ implements some kind of preview mechanism, or mistakenly I
open a page in IE due to incorrect default association, arent there still
chances of the same vulnerability coming back to haunt me? Granted, the
chances will be less, but IE has sunk its nails into the UI. Isnt that true?


Correct.  That's part of what Dan Geer got fired for pointing out.  Not that
it should come as a surprise to anybody...

Attachment: _bin
Description:

Current thread:

RE:Internet explorer 6 on windows XP allows exection of arbitrary code ( and opera and Mozilla too) meme-boi (Sep 11)
- Re: RE:Internet explorer 6 on windows XP allows exection of arbitrary code ( and opera and Mozilla too) Jeremiah Cornelius (Sep 11)
- Re: RE:Internet explorer 6 on windows XP allows exection of arbitrary code ( and opera and Mozilla too) jelmer (Sep 12)
- <Possible follow-ups>
- RE: Internet explorer 6 on windows XP allows exection of arbitrary code ( and opera and Mozilla too) Drew Copley (Sep 12)
  - Re: RE: Internet explorer 6 on windows XP allows exection of arbitrary code ( and opera and Mozilla too) M Saqib Ilyas (Sep 26)
    - Re: RE: Internet explorer 6 on windows XP allows exection of arbitrary code ( and opera and Mozilla too) Valdis . Kletnieks (Sep 30)