RE: active x controls that can access the hard disk

From: Thor Larholm (Thorat_private)
Date: Sun Jun 02 2002 - 09:48:21 PDT

Next message: Matias Sedalo: "Buffer Overflow with all versions of Internet Explorer and Javacript."

Previous message: Timothy L. Salus: "Re: Verizon Call Intercept"
Maybe in reply to: jj ss: "active x controls that can access the hard disk"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

The FileSystemObject ("Scripting.FileSystemObject) to name but one.

As always, trying to use unsafe controls ordinarily will give the enduser a
warning, and hence the choice.

-----Original Message-----
From: jj ss [mailto:seccret86at_private]
Sent: 2. juni 2002 08:58
To: vuln-devat_private
Subject: active x controls that can access the hard disk

Hello

Does anybody know if there are any active x controls
that are part of windows that would allow a malicious
script to write a binary file to the hard disk (like
an executable)?

thanks

Jhon

__________________________________________________
Do You Yahoo!?
Yahoo! - Official partner of 2002 FIFA World Cup
http://fifaworldcup.yahoo.com

Next message: Matias Sedalo: "Buffer Overflow with all versions of Internet Explorer and Javacript."
Previous message: Timothy L. Salus: "Re: Verizon Call Intercept"
Maybe in reply to: jj ss: "active x controls that can access the hard disk"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Sun Jun 02 2002 - 16:08:49 PDT