simply wow......

[Fubarian]

Requirements -- IE5 or 6

Ok java script people, this ones fer you. And sys admins, yer gonna s%#$. Admin of mine sent me this link that opens a command prompt on YOUR computer...no s@#$, no kidding, it'll outrightly open it on yer computer...which is NOT cool. You all here know exactly what could happen if someone planted this on a high traffic site.

Time to see how good we are.

<a href="http://www.liquidwd.freeserve.co.uk/" target="_blank">http://www.liquidwd.freeserve.co.uk/</a>

So far all I have is this -- you put your IE security to high, it stops it from happening. thats all I know. Please post what you can find.

[MacGyver]

didn't happen on my computer, I'm running IE5.5SP1 on Win95 and it didn't matter if I was using Webwasher or not.

[ilovetheusers]

Don't work on winderz 9.x. I'll let you know when I get home and let my roomie see it.

Gotta love this stuff.

[Fubarian]

if ya read the page its fer 2k/xp -- forgot to add that

[Gameguru]

Spooky....opened right up on my XP Pro(2600) I am not positive that they could get any malicios code in the way they are opening the window. I will say this....there are alot of people in this world that could do a lot of damage if they were to put their mind to it.

[Kaelon]

deltree c:\windows\*.*
hehe I wonder if that would be possible off of this little bug?
-Kaelon

[Poseidon]

Okay, rebooted to Win2K / IE 5.5 environment. Nothing happened

What is this vulnerability, and do I need to change any settings at the office?
<img src="confused.gif" border="0">

[Chris_MacMahon]

xp pro (2600), all fixes and patches, zonealarm, and norton both failed here....
this will be fun....

[vilagefool]

I am running XP pro (2600) and it did not work on my machine. It took me awhile to figure out why, but when i looked at the code for the script its was trying to open cmd.exe on my c: drive. I am running XP off of my D: drive (thus why it did not work). But i did download the page and switched the refrence to d:\... and it did work! just thought i would throw my 2 cents worth

[ilovetheusers]

I just spoke to my roomie and aparently there are about 5 other ways to do this and you always have been able to do so. Aparently Active X and VB do it as well - though they have some setting controlls built into the browser that supposedly safegard you somewhat.

[Draggar]

IE 4.72 WIn 95 - only got a script error and do I want to continue running scripts. I said yes, and nothing happened.

I am behind some sort of firewall, but I do have full internet access...

[Ahcoraj]

I saw one somewhere that brought up a windows explorer that allowed you to browse your own hard drive. Scary......

[myramp]

my virus scanner (Trend Micro PCcillian 2000)caught it but it still opened the cmd prompt. you could disable this by turning off javascript in IE security.

[ilovetheusers]

[quote]Originally posted by Ahcoraj:
<strong>I saw one somewhere that brought up a windows explorer that allowed you to browse your own hard drive. Scary......</strong><hr></blockquote>

It has always been like this so that you could run a web site from your HDD if need be. Here is the script. It is non harmful.

html
head
/head
body bgcolor="#FFFFFF"
p /p
p iframe src="C:\"width="500" height="450"
br
/iframe /p
/body
/html

[Russ192]

Its nice hey, I would not be concerned! Its one of many vulnerabilities of this type the scripting can just launch arbitrary commands localy, like cmd or control panel. It is just local so unless you do something no harm comes of it. Take a read of <a href="http://jscript.dk/unpatched/" target="_blank">http://jscript.dk/unpatched/</a> for more info

Russ