PROTECTED]
Date: Thursday, September 02, 1999 6:30 PM
Subject: Re: IE 5.0 allows executing programs
On Sat, Aug 28, 1999 at 10:44:32AM -0400, Jesper M. Johansson wrote:
Actually, the setting that goes right to the heart of this one is
"Script ActiveX Controls Marked Safe For Scripting"
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
All,
My self and Eric Stevens today worked on an idea that allowed this
vulnerability to be executed reliably in default installations on the
following operating systems.
[Tested]
Windows NT v4 Terminal Server (SP3)
Windows 98
[Background]
Url to
To: [EMAIL PROTECTED]
Subject: Re: IE 5.0 allows executing programs
This apparently works on NT 4.0 sp5 and IE 5.00.2014.0216IC as well..
Micheal Patterson
[EMAIL PROTECTED]
- Original Message -
From: Georgi Guninski [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Saturday, August 21, 1999 11
This apparently works on NT 4.0 sp5 and IE 5.00.2014.0216IC as well..
Micheal Patterson
[EMAIL PROTECTED]
- Original Message -
From: Georgi Guninski [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Saturday, August 21, 1999 11:17 AM
Subject: IE 5.0 allows executing programs
Disclaimer
Disclaimer:
The opinions expressed in this advisory and program are my own and not
of any company.
The usual standard disclaimer applies, especially the fact that Georgi
Guninski
is not liable for any damages caused by direct or indirect use of the
information or functionality provided by this