lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Date: Mon, 4 Aug 2003 14:57:47 -0400 From: "Richard M. Smith" <rms@...puterbytesman.com> To: "BUGTRAQ@...URITYFOCUS. COM" <BUGTRAQ@...URITYFOCUS.COM> Subject: Notepad popups in Internet Explorer and Outlook Hi, Do Notepad popups represent a security risk or are they simply another way for spammers and marketers to annoy us? Because of a design flaw in Internet Explorer, Notepad popup windows can be displayed from an HTML email message or Web page regardless of browser security settings. In addition, Notepad popups can access files on a hard disk, possibilly causing stability problems in a Windows saystem. For more details, see: http://www.computerbytesman.com/security/notepadpopups.htm Question: What kind of operating system allows an email message to automatically start up a text editor to change a system file? Richard M. Smith http://www.ComputerBytesMan.com
Powered by blists - more mailing lists