LS wrote: > > Hi all, > > I was sent the following address: > > http://www.security7.ch.vu/ > > When entering, it claims that you are exposed and tracked and a lot of information > is stored on your computer (doh..altho i dont keep names on it etc..). > What caught my attention is that the show you the contents of your root directory > (c:\ for a windows machine...). > What's alarming is that I don't see how this thing could've been done. I dont allow > any shares, I dont allow any services, and unless it is an IE exploit of some sort, > there is no other way to explain it. My firewall (TPF) handles all the microsoft > network issues and only internal LAN can even see my nbt name etc... > this is weird. > Anybody know how this is done ? > > Regards, > Eli
<a href='file:///c:\'>click me</a> Automate that in (e.g.) Javascript and you're done. Grtz, Jan -- Dutch Security Information Network : http://www.dsinet.org alt.hack.nl FAQ : http://www.dsinet.org/hackfaq mailto:[EMAIL PROTECTED]
