Re: Double clicking on innocent looking files may be dangerous

From: Nicolas Gregoire (nicolas.gregoireat_private)
Date: Thu Apr 26 2001 - 00:32:09 PDT

Next message: v9at_private: "IRIX /usr/lib/print/netprint local root symbols exploit."

Previous message: NESTING, DAVID M (SBCSI): "Re: Advisory for perl webserver"
In reply to: [Co]Proc: "Re: Double clicking on innocent looking files may be dangerous"
Next in thread: Elias Levy: "Re: Double clicking on innocent looking files may be dangerous"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> ==== CreditCard.txt.{FBF23B40-E3F0-101B-8488-00AA003E56F8} ====
> [InternetShortcut]
> URL=file://c:/command.com
> IconIndex=-152
> IconFile=shell32.dll
>
> ========================= END OF FILE =========================
>
> Now the file in explorer will be visible with normal
> .txt-file icon (you can change IconIndex and/or IconFile
> for other icon), and when someone clicks on it he thinks
> that's normal text file, but as the result of double-clicking
> MS-DOS Prompt will pop-up, without any confirmations(!!!).

Tried on Win98.
The MS-DOS prompt pop-up, but the icon is not the normal txt-file one.
It's the "link to a txt-file" icon (ie. the same as a "normal text-file"
but with a little arrow in the lower left corner).
But an non-vigilant user can be fooled ....

Nicob

Next message: v9at_private: "IRIX /usr/lib/print/netprint local root symbols exploit."
Previous message: NESTING, DAVID M (SBCSI): "Re: Advisory for perl webserver"
In reply to: [Co]Proc: "Re: Double clicking on innocent looking files may be dangerous"
Next in thread: Elias Levy: "Re: Double clicking on innocent looking files may be dangerous"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Thu Apr 26 2001 - 09:38:36 PDT