Full Disclosure: Re: PDF mailto exploit in the wild

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Full Disclosure mailing list archives

Re: PDF mailto exploit in the wild

From: Gregory Boyce <gboyce () badbelly com>
Date: Tue, 23 Oct 2007 09:35:10 -0400 (EDT)

On Tue, 23 Oct 2007, Nick Boyce wrote:

# To Disable mailto (recommended)
Modify tSchemePerms by setting the mailto: value to 3:
version:1|shell:3|hcp:3|ms-help:3|ms-its:3|
ms-itss:3|its:3|mk:3|mhtml:3|help:3|disk:3|afp:3|disks:3|telnet:3|ssh:3|acrobat:2|mailto:3|file:2


And now I'm having heart palpitations ... can anyone explain the
function of the "telnet" and "ssh" parts of that little registry entry
?


So that you can have ssh:// or telnet:// links within a document.

--
Another Boyce

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

By Date By Thread

Current thread:

PDF mailto exploit in the wild Paul Szabo (Oct 23)
- Re: PDF mailto exploit in the wild Nick Boyce (Oct 23)
  - Re: PDF mailto exploit in the wild Gregory Boyce (Oct 23)
    - Re: PDF mailto exploit in the wild Nick Boyce (Oct 23)
- Re: PDF mailto exploit in the wild 3APA3A (Oct 23)
  - Re: PDF mailto exploit in the wild Paul Szabo (Oct 23)
- Re: PDF mailto exploit in the wild biz4rre (Oct 23)