Re: Double clicking on innocent looking files

From: Frank Heyne (fhat_private-dresden.de)
Date: Wed Apr 18 2001 - 02:10:06 PDT

Next message: Hugo van der Kooij: "Re: Innfeed Buffer Overflow"

Previous message: Michal Zalewski: "Re: OpenBSD 2.8 ftpd/glob exploit (breaks chroot)"
Next in thread: John H. Robinson, IV: "Re: Double clicking on innocent looking files"
Reply: John H. Robinson, IV: "Re: Double clicking on innocent looking files"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 17 Apr 01, at 10:36, Philip Stoev wrote:

> maybe other tricks are possible with a carefully-chosen CLSID.

How about this:

1. Copy an exe file of your choice into a public directory like c:\temp

2. Rename this file to
OurAdminIsStupid.htm.{00000303-0000-0000-C000-000000000046}

3. The exe will now show the icon of an html file
   (but not the correct type description)

4. When your curious Admin double clicks the file, CPU usage
   will go up to 100 %, and it seems to be impossible to
   stop this with task manager

Works with NT 4 SP 6a + IE 5.5

Greetings

Frank Heyne

Next message: Hugo van der Kooij: "Re: Innfeed Buffer Overflow"
Previous message: Michal Zalewski: "Re: OpenBSD 2.8 ftpd/glob exploit (breaks chroot)"
Next in thread: John H. Robinson, IV: "Re: Double clicking on innocent looking files"
Reply: John H. Robinson, IV: "Re: Double clicking on innocent looking files"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Thu Apr 19 2001 - 17:38:24 PDT