> From: "Paul Tinsley" <[EMAIL PROTECTED]> > Excerpt from Gibson Research (http://grc.com/default.htm) > Attention Windows XP Users > > This vulnerability allows the files contained in any specified directory > on your system to be deleted if you click on a specially formed URL.
Credit due where credit is, Steve really should be crediting Shane Hird who discovered this vulnerability. You can see his post here: http://cert.uni-stuttgart.de/archive/bugtraq/2002/08/msg00224.html And you can try a proof-of-concept here: http://jscript.dk/2002/8/sec/xphelpdelete.html And you can see all of the 20 publicly known unpatched vulnerabilities in Internet Explorer here: http://www.pivx.com/larholm/unpatched/ _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
