Internet Explorer drag-n-drop vulnerability
news
/
advisories
/
forum
/
software
/
advertising
/
search
/
exploits
[EN]
securityvulns.ru
no-pyccku
Internet Explorer drag-n-drop vulnerability
updated since 25.08.2004
Published:
04.07.2007
Source:
BUGTRAQ
SecurityVulns ID:
3937
Type:
client
Level:
6
/10
Description:
By using javaasript in conjunction with shell:startup it's possible to place executable into startup folder if user drags an object on the page or scrolls the page.
Affected:
MICROSOFT
:
Internet Explorer 5.5
MICROSOFT
:
Internet Explorer 6.0
Original document
LIUDIEYU dot COM
,
Two Unpublished IE Cases
(
04.07.2007
)
http-equiv@excite.com
,
What A Drag
(
25.08.2004
)
http-equiv@excite.com
,
What A Drag II XP SP2
(
25.08.2004
)
mikx
,
What A Drag! -revisited-
(
25.08.2004
)
Discuss:
Read or add your comments to this news (0 comments)
About
|
Terms of use
|
Privacy Policy
©
SecurityVulns
,
3APA3A
, Vladimir Dubrovin
Nizhny Novgorod
Enter your search terms
Web
securityvulns.com
Submit search form
test server
