RE: [Full-Disclosure] Re: IE Shell URI Download and Execute, POC

[Todd Towles]

Depends on how Microsoft fixed IE. If they did the same thing as the ADODB patch from last week and just focused on the Shell.Application variant instead of the code IE problem, then it won’t stop this WSH variant by L33tPrincess. Which I must say is a sweet name. =)     -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of L33tPrincess Sent: Tuesday, July 13, 2004 9:34 PM To: [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: [Full-Disclosure] Re: IE Shell URI Download and Execute, POC   Ferruh, Is this a new variant (wscript.shell)?  Is the vulnerability mitigated by today's Microsoft patch?       Hello; Code is based on http://www.securityfocus.com/archive/1/367878 (POC by Jelmer) message. I just added a new feature "download" and then execute application. Also I use Wscript.Shell in _javascript_ instead of Shell.Application. Do you Yahoo!? New and Improved Yahoo! Mail - 100MB free storage!