Vulnerability Development mailing list archives
New/Hidden/Unimplemented IE Protocols (Re: Crash IE with shell://:)
From: Usman Akeju <manus () MIT EDU>
Date: Thu, 24 May 2001 11:18:26 -0400
Hey all, So I have MS Visual Studio 6.0 installed, and I skimmed through the file DEVSHL.DLL (just search for it) and found the following string: " Sorry, that has not been implemented yet! prospero: outlook: tn3270: telnet: gopher: mailto: shttp: https: shell: wais: news: nntp: http: file: afs: cid: mid: ftp: mk: " Though some of these are obviously working already, I didn't take the time to type each one of these into IE to see what happens, if anything, but maybe some of you want to fux around with the non-implemented ones a bit? I also remember seeing in MSHTML.DLL and/or other places these protocols that I'd never heard of (as IE-supported at least), some of them stranger than others...: snews: newsrc: rlogin: wais: url: ldaps:// mic:// outday:// ms-its & its: (old, possibly related to mk:, but still weird -- see http://helpware.net/htmlhelp/linktochm.htm) cdl: ..and soon there will me more to come -- see the article on DNA 2000 at http://www.devx.com/upload/free/features/entdev/1999/11nov99/cv1199/cv1199.asp It's old, but I *think* it might be relevant. Ignore if it isn't. And if the "unimplemented" protocols are already causing us problems... -Usman Akeju:// ;]:// P.S. - The hello:// --> shell:// crash only worked on me once, and after a reboot couldn't be replicated. The gopher://: crash works, though. Running Win98SE 4.10.2222A using IE 5.50.4522.1800 SP1 +Q297328,q283908,Q286045,q290108,Q286043. Chris Tobkin wrote:
Speaking of things they are building into the OS via IE, try outlook:\\Mailbox%20-%20Your%20Name\ I find it somewhat interesting that you can go directly into your inbox from a link like outlook:\\Mailbox%20-%20Your%20Name\Inbox or your calendar (outlook:\\Mailbox%20-%20Your%20Name\Calendar) for that matter.. // Chris tobkin () intersec com
-- Bored? Watch other people be bored at http://webcam.mit.edu !
Current thread:
- Crash IE with shell://: Kayne Ian (Softlab) (May 22)
- Re: Crash IE with shell://: CJ Oster (May 22)
- Re: Crash IE with shell://: cory (May 22)
- <Possible follow-ups>
- Re: Crash IE with shell://: Peter (May 23)
- Re[2]: Crash IE with shell://: Kevin J. Menard, Jr. (May 23)
- Re: Crash IE with shell://: Dino Amato (May 23)
- RE: Re[2]: Crash IE with shell://: Chris Tobkin (May 23)
- New/Hidden/Unimplemented IE Protocols (Re: Crash IE with shell://:) Usman Akeju (May 24)
- Re: Re[2]: Crash IE with shell://: Bob Fiero (May 23)
- RE: Re[2]: Crash IE with shell://: Kayne Ian (Softlab) (May 24)
- Re:Re[4]: Crash IE with shell://: Peter (May 24)
- Re: Crash IE with shell://: exceed mekka-symposium (May 24)