Home page logo
/

fulldisclosure logo Full Disclosure mailing list archives

RE: How big is the danger of IE?
From: "Sapheriel" <sapheriel () wwwp de>
Date: Thu, 8 Jul 2004 17:07:20 +0200

i didn't know IE also displays e-mails and power point files. 

-----Original Message-----
From: full-disclosure-admin () lists netsys com
[mailto:full-disclosure-admin () lists netsys com] On Behalf Of Eric Paynter
Sent: Thursday, July 08, 2004 4:56 PM
To: full-disclosure () lists netsys com
Subject: RE: [Full-disclosure] How big is the danger of IE?

On Thu, July 8, 2004 4:51 am, Sapheriel said:
well, i read about a hacker scenario once that utilizes IE 
vulnerabilities by exploiting the interests of employees. basically, 
you lure an employee to a website you prepared that exploits some bug 
in IE to install a trojan on that pc, thus bypassing firewall and other
security precautions.

Don't forget that the "website" you lure the person too can also be an
email, or anything else with embedded HTML - one of those chain-mail power
point things - almost anything.

-Eric

--
arctic bears - affordable email and name services @yourdomain.com
http://www.arcticbears.com

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]