Submit Hint Search The Forums LinksStatsPollsHeadlinesRSS
14,000 hints and counting!


Click here to return to the 'No clicking needed' hint
The following comments are owned by whoever posted them. This site is not responsible for what they say.
No clicking needed
Authored by: slughead on May 19, '04 12:20:25PM

Oh and by the way, you don't have to click on any URL to have this bug screw you over. As seen in the proof of concept on insecure.ws, you can just have a redirect meta tag. Or you could put it in a 1x1 pixel iframe, or you could put it in an invisible frame, or you could .. etc.

Don't kid yourselves, this can start wheels spinning in your computer without you getting wise until the damage is done. Fix your protocol helpers.

---
http://lp.org -- that's all you need to know



[ Reply to This | # ]
No clicking needed
Authored by: lpangelrob on May 19, '04 04:33:04PM

The question is, which ones?

I've redirected help:// over to TextEdit for the time being on two computers (because I sure never used Help Viewer anyway), but I guess this theoretically means any helper applications that have holes in them (in this case, Help Viewer has the hole) are vulnerable.

If there are other applications out there that have this poorly designed "run" parameter, I'd like to know about them now instead of someone else discovering it for me. :-)

---
-Robert Guico



[ Reply to This | # ]