At 06:38 PM 8/13/00 -0700, Eric N. Valor wrote:
>At 06:30 PM 08/12/2000 -0700, [EMAIL PROTECTED] wrote:
>>What is really nice about Shockwave is that while it displaying the
>>streaming video, one can be reading the person's harddrive with a
>>smidgeon of code but that would definitely make life to enjoyable these
>>days, especially with consulting services starting to use Shockwave on
>>their home page..
>
>Indeed. I forgot to mention this. And the above isn't even an "exploit"
>per se -- it's more or less a normal function of Flash/Shockwave (embedded
>macros controlling the execution of the presentation). I don't have a
>Flash 4 manual anymore or I'd look up the possible relevant gotchas here.
I just saw a nifty little one the other called the gif bug.. Basically when
someone goes to your website that has lots of pictures, within the gif,
there is some arbitrary code that could do some malicious action like
delete the person's harddrive as they are viewing the page. Most vendors
use gif exploit to gather information about the person browsing a
particular site, but you never know.. :)
>-
>Eric N. Valor
>[EMAIL PROTECTED]
>
>- This Space Intentionally Left Blank -
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
