BugTraq
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
 
Microsoft Internet Explorer 6 Protocol Handler Vulnerability Aug 05 2004 07:33PM
Robillard, Nicolas (nicolas robillard snclavalin com)
Description : Protocol Handler allow arbitrary switch to be passed to the
associated program.<BR>

Exploit :

The protocol handler are defined in HKEY_CLASSES_ROOT. We will use the MMS
protocol for this exemple. In the HKEY_CLASSES_ROOT\MMS\SHELL\OPEN\COMMAND
Registry key you can see that the prog...

[ more ]  
 

Privacy Statement
Copyright 2010, SecurityFocus