[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [Full-Disclosure] What about M$ in the shell: race

To: <1@xxxxxxxxxxx>, <full-disclosure@xxxxxxxxxxxxxxxx>
Subject: RE: [Full-Disclosure] What about M$ in the shell: race
From: "Larry Seltzer" <larry@xxxxxxxxxxxxxxxx>
Date: Sat, 10 Jul 2004 14:08:29 -0400

>>http://poc.homedns.org/execute.htm
>>http://62.131.86.111/security/idiots/malware2k/installer.htm 

I don't think of the Shell.Application exploit as the same thing as the shell: 
link
exploit. Am I missing something?

>>shell:desktop

This really doesn't impress me. I don't see this as an attack at all, unless 
you can
find a way to overflow the folder or something like that. Can you actually run 
code this
way, as was easy to do with Mozilla with a simple shell:folder\\foo.exe?

Larry Seltzer
eWEEK.com Security Center Editor
http://security.eweek.com/
http://blog.ziffdavis.com/seltzer
larryseltzer@xxxxxxxxxxxxx 

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

References:
- RE: [Full-Disclosure] What about M$ in the shell: race
  - From: http-equiv@xxxxxxxxxx

Prev by Date: Re: [Full-Disclosure] Microsoft Faces Angry IE Users' Questions
Next by Date: RE: [Full-Disclosure] What about M$ in the shell: race
Previous by thread: RE: [Full-Disclosure] What about M$ in the shell: race
Next by thread: RE: [Full-Disclosure] What about M$ in the shell: race
Index(es):
- Date
- Thread