Computer Security
[EN] no-pyccku

Internet Explorer drag-n-drop vulnerability
updated since 25.08.2004
SecurityVulns ID:3937
Threat Level:
Description:By using javaasript in conjunction with shell:startup it's possible to place executable into startup folder if user drags an object on the page or scrolls the page.
Affected:MICROSOFT : Internet Explorer 5.5
 MICROSOFT : Internet Explorer 6.0
Original documentdocumentLIUDIEYU dot COM, Two Unpublished IE Cases (04.07.2007)
 document[email protected], What A Drag (25.08.2004)
 document[email protected], What A Drag II XP SP2 (25.08.2004)
 documentmikx, What A Drag! -revisited- (25.08.2004)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod