Re: Self-Executing FOLDERS: Windows XP Explorer Part V

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Re: Self-Executing FOLDERS: Windows XP Explorer Part V
From: Liu Die Yu <liudieyuinchina@xxxxxxxxxxxx>
Date: 27 Jan 2004 08:25:55 -0000
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm


here is what's happening here on my default and up2date winxp.home:
i downloaded the ZIP file at:
http://www.malware.com/my.pics.zip
double clicked it and another windows explorer popped up - there was folder 
inside the zip file. 
then i double clicked the folder - and my screen was burning... :-P

i can play more interesting games when at my school:
just shout out : man, i've shared matrix3 in "mat3" folder on my machine 
\\UMBRELLA...
many guys will doubleclick that "folder" and get compromised. :-))))))

----------------------

conclusion:
cheating the victim into openning a folder icon is much easier than cheating 
them into openning an HTM file.
so this is excellent stuff! 

another thing:
it works under "mcafee virus scan" at present.

added to my little collection of ie vulnz:
http://www.safecenter.net/UMBRELLAWEBV4/ie_unpatched/index.html
(a part of TRIE - http://continue.to/trie )

Prev by Date: Chaosreader: Trace TCP/UDP from snoop/tcpdump logs
Next by Date: MDKSA-2004:008 - Updated tcpdump packages fix several vulnerabilities
Previous by thread: Re: Self-Executing FOLDERS: Windows XP Explorer Part V
Next by thread: NextPlace.com E-Commerce ASP Engine
Index(es):
- Date
- Thread