Yes, IE6 on WinXP is vulnerable. I just finished testing it. J.D. Meek
-----Original Message----- From: Snow, Corey [mailto:[EMAIL PROTECTED]] Sent: Wednesday, March 06, 2002 12:32 PM To: 'leon'; [EMAIL PROTECTED] Subject: RE: scary site I'm going to have to retract my previous statement- I don't know if IE 6 on WinXP is vulnerable, because the page in question was searching for cmd.exe in a standard location, which is not how I configure my system- to prevent just such an attack from suceeding. Sorry for the confusion, Corey Snow > -----Original Message----- > From: leon [mailto:[EMAIL PROTECTED]] > Sent: Tuesday, March 05, 2002 9:30 AM > To: [EMAIL PROTECTED] > Subject: scary site > > > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > http://www.liquidwd.freeserve.co.uk/ > > > Try it with a windows machine and IE with all patches. > > Be afraid be very afraid. > > FYI this is for all those people who are think that just having a > firewall is enough. > > Guess what? > > This works through packet filter, stateful inspection and proxy > servers. > > Cheers, > > Leon > > -----BEGIN PGP SIGNATURE----- > Version: PGPfreeware 6.5.8 for non-commercial use <http://www.pgp.com> > > iQA/AwUBPIUArNqAgf0xoaEuEQLn0wCgjtpLPuRxLbCscHrq32IjePeezf8AoI6t > T73+xCv/VhrCGDVDIVrFBqZl > =9gR6 > -----END PGP SIGNATURE----- > ######################################################### The information contained in this e-mail and subsequent attachments may be privileged, confidential and protected from disclosure. This transmission is intended for the sole use of the individual and entity to whom it is addressed. If you are not the intended recipient, any dissemination, distribution or copying is strictly prohibited. If you think that you have received this message in error, please e-mail the sender at the above e-mail address. #########################################################
