*Another* severe IE Security vulnerability found - Windows版

本页内容为未名空间相应帖子的节选和存档，一周内的贴子最多显示50字，超过一周显示500字访问原贴

Windows版 - *Another* severe IE Security vulnerability found

相关主题
● [转载] New IE exploit found...	● Re: My WinXP crashed after 'Hotfix (SP2)' ft!
● 求助：无法进入XP和安全模式	● Windows XP SP2 v2096 released
● 求助：我的T60为什么装不上IIS呀？	● [转载] Win XP SP2 free
● Re: 又着道了...	● XP SP2 available from here (Microsoft)
● More about SP2	● More about SP2 (II)
● remote command execution	● Re: 问一个重装系统的土问题
● Re: how to enable DMA for cd-roms in win2k?	● Re: XP SP2有神经病呀
● Re: 安装Win2000补丁程序2(SP2)后的错误	● 安装Windows XP SP2补丁可能出问题的程序名单(ZZ)

相关话题的讨论汇总
话题: another话题: ie话题: security话题: severe

进入Windows版参与讨论

(共1页)

c**t
发帖数: 2744

Here we go again, fully patched systems, even with SP2 allow this bug to
slip through:
http://secunia.com/advisories/12321/
The vulnerability is caused due to insufficient validation of drag and drop
events issued from the "Internet" zone to local resources. This can be
exploited by a malicious website to e.g. plant an arbitrary executable
file in a user's startup folder, which will get executed the next time
Windows starts up.

(共1页)

进入Windows版参与讨论

相关主题
● 安装Windows XP SP2补丁可能出问题的程序名单(ZZ)	● More about SP2
● win2003下的IE Addon管理软件	● remote command execution
● A question about file sharinig in XP SP2	● Re: how to enable DMA for cd-roms in win2k?
● 为什么装了TREND PC CILLIN系统就出问题了	● Re: 安装Win2000补丁程序2(SP2)后的错误
● [转载] New IE exploit found...	● Re: My WinXP crashed after 'Hotfix (SP2)' ft!
● 求助：无法进入XP和安全模式	● Windows XP SP2 v2096 released
● 求助：我的T60为什么装不上IIS呀？	● [转载] Win XP SP2 free
● Re: 又着道了...	● XP SP2 available from here (Microsoft)

相关话题的讨论汇总
话题: another话题: ie话题: security话题: severe

#	版面	帖数(主题数)
-	全站	4871 (796)
1	Military	3777 (569)
2	Stock	341 (51)
3	Joke	117 (17)
4	History	116 (3)
5	Automobile	100 (9)
6	USANews	55 (9)
7	Midlife	45 (1)
8	Headline	41 (41)
9	Dreamer	33 (13)
10	FleaMarket	32 (20)
11	Living	30 (7)

boards

未名新帖统计// 7月16日

历史上的今天