Full Disclosure mailing list archives

Re: shell:windows

From: Nick Eoannidis <nikon () xillioncomputers com>
Date: Sun, 11 Jul 2004 09:43:26 +0800

Larry Seltzer
eWEEK.com Security Center Editor --

buddy, the shell:windows URI handler was disabled in IE ages ago!
The fact it can be crafted into an exploit for Mozilla! is the issue
here.
Of course it wont work on your IE your probably patched to the max!
Mozilla just forgot to disable access to this URI due to the fact
that mozilla was first built for nix and not windoze.
All versions of mozilla have been fixed now

Nikon
Xillion Computers
Trust your Technolust
http://www.xillioncomputers.com
nikon () xillioncomputers com

Attachment: smime.p7s
Description: S/MIME Cryptographic Signature

Current thread:

Re: shell:windows Nick Eoannidis (Jul 10)
- Re: Re: shell:windows Barry Fitzgerald (Jul 12)
  - RE: Re: shell:windows Larry Seltzer (Jul 12)
- <Possible follow-ups>
- Re: Re: shell:windows Barry Fitzgerald (Jul 12)
  - RE: Re: shell:windows Larry Seltzer (Jul 12)
- Re: Re: shell:windows Barry Fitzgerald (Jul 12)
  - Re: Re: shell:windows Nick FitzGerald (Jul 12)
- RE: Re: shell:windows Perrymon, Josh L. (Jul 12)