Bugtraq mailing list archives
Re: IE5 allows executing programs
From: jmaccraw () WARPMEDIA NET (J MacCraw)
Date: Tue, 7 Sep 1999 10:01:03 -0400
Does this writing to an EXE bypass Anti-Virus protection against programs that write to EXE's? How about a less damaging example that writes to say "C:\temp\example.exe" so we can see what it does safely? At 21:16 8/30/1999 -0400, SysAdmin Wrote: <snip>
ANY Windows 98 file can be overwritten. Period. If you try and manually pasting over or destroying the file you will be denied, however Active X can help where you can't. In fact, ironically, after it's been corrupted you cannot fix it because you are denied from touching it! If Windows 98 is restarted or crashed (hint, forced to crash), then it will fail start up with a Fatal Exception, you can only recover from DOS by restoring the file. I would like to note, for the record, that the vast majority of home users who will never know about the patch to this file or know what Active X even is are not in possession of 98 install disks. Rather they are in possession of a disk that restores the computer to factory original. Despite David LeBlanc et al. assurance that we could just disable Active X I'm discussing it because you know your poor parents are NEVER going to, how would they understand the instructions? And, of course, what average user could EVER recover from this sort of damage?
<snip>
The link is http://www.sassproductions.com/hacked.htm
<snip> Joshua MacCraw http://www.warpmedia.net mailto:jmaccraw () warpmedia net
Current thread:
- Re: IE5 allows executing programs David LeBlanc (Aug 30)
- <Possible follow-ups>
- Re: IE5 allows executing programs SysAdmin (Aug 30)
- Re: IE5 allows executing programs Jim Frost (Sep 01)
- Re: IE5 allows executing programs David LeBlanc (Sep 01)
- Re: IE5 allows executing programs Brad Griffin (Sep 02)
- Re: IE5 allows executing programs David LeBlanc (Sep 07)
- re, anti btrom Martin Markovitz (Sep 08)
- Re: IE5 allows executing programs Paul L Schmehl (Sep 08)
- SDI AMD remote exploit for RH linux Thiago (Sep 02)
- Re: IE5 allows executing programs J MacCraw (Sep 07)
- Re: IE5 allows executing programs Jesper M. Johansson (Sep 08)
- Re: IE5 allows executing programs SysAdmin (Sep 08)
- Re: IE5 allows executing programs Haxor, Wikit (Sep 16)
- Two SuSE 6.2 local root exploits Brock Tellier (Sep 16)
- SuSE 6.2 /usr/bin/sccw read any file Brock Tellier (Sep 16)
- Fw: CERT Advisory CA-99.12 - Buffer Overflow in amd morex (Sep 16)
- More fun with WWWBoard David Weins (Sep 17)
- Re: More fun with WWWBoard Chris Ridd (Sep 20)