From: admin at securetarget.net (Kaveh Mofidi)
Subject: Recycle Bin Unavailability of Service

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Secure Target Network (Security Advisory August 04, 2003) 
Topic: Recycle Bin Unavailability of Service
Discovery date: July 24, 2003

Affected applications and platforms: 
Windows XP Service Pack 1

Not affected applications and platforms:
Windows 2000 Service Pack 3 (and may others)

Introduction: 
I'm sure this is related to security issues because it gets in touch
with availability. So, you may want to explore some places with your
"Windows Explorer" or "My Computer" from else where. That's make no
sense to you but ever doing exploring from "Recycle Bin" to anywhere
else?
You can't do this and this is a kind of Unavailability!
When you clicked on "Recycle Bin" on any address bar, the word become
highlighted and when you trying to type a path, the words and phrases
you typed, turn to "Recycle Bin". This way, you cannot change
MANUALLY to any desired location from "Recycle Bin".

Exploit: 
There's no exploit for this misbehavior but you would be aware of
unavailability this situation brings to your desktop because some day
may you have not any mouse.

Workaround: 
This involved with Windows XP GUI behavior and may fix in future but
if you want workaround that, just copy and paste you desire path and
press "ENTER" as fast as possible.
 
Tested on: 
Windows XP Service Pack 1
Windows 2000 Service Pack 3

Feedback: 
Kaveh Mofidi (Admin@...ureTarget.Net) 
Secure Target Network (Security Consulting Group) 
HTTP://SECURETARGET.NET

-----BEGIN PGP SIGNATURE-----
Version: PGP 8.0.2

iQA/AwUBPy5A2WO1siv41icpEQKRGgCfc40Jat/xExHqDtQCS+gF6blrVYUAnjZh
kt2GRpjpZN8rBy0BOU1BMGdg
=b9Al
-----END PGP SIGNATURE-----
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20030804/e7683f1b/attachment.html

Powered by blists - more mailing lists