lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Message-ID: <01cb01c258fd$58e10fb0$858370d4@thor2k> From: lists.netsys.com at jscript.dk (Thor Larholm) Subject: XP security hole uplddrvinfo.htm > From: "Paul Tinsley" <Paul.Tinsley@...ve.com> > Excerpt from Gibson Research (http://grc.com/default.htm) > Attention Windows XP Users > > This vulnerability allows the files contained in any specified directory > on your system to be deleted if you click on a specially formed URL. Credit due where credit is, Steve really should be crediting Shane Hird who discovered this vulnerability. You can see his post here: http://cert.uni-stuttgart.de/archive/bugtraq/2002/08/msg00224.html And you can try a proof-of-concept here: http://jscript.dk/2002/8/sec/xphelpdelete.html And you can see all of the 20 publicly known unpatched vulnerabilities in Internet Explorer here: http://www.pivx.com/larholm/unpatched/