Full Disclosure mailing list archives
FFFjacking
From: ".cCuMiNn." <ccuminn () soom cz>
Date: Thu, 2 Jun 2011 08:22:48 +0200
Same web browsers allow to show directory index or content of text-based file in frame, when it is loaded via FILE protokol. It enables hijacking of informations from user's local disk by drag&drop methods. I call this technique "FFFjacking (File From Frame hiJacking)". Combination of Windows XP and Internet Explorer(6,7,8) allows files downloading or uploading between user's local disk and shared folder on attacker's SMB server. I published PoC (0-day exploit) which shows the way, how to run executable program in user's computer. These techniques are described in detail in my article: http://www.soom.cz/index.php?name=articles/show <http://www.soom.cz/index.php?name=articles/show&aid=550> &aid=550 Roman Kümmel aka .cCuMiNn. SOOM.cz
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- FFFjacking .cCuMiNn. (Jun 02)