[2598] in WWW Security List Archive
Re: ActiveX security hole reported.
daemon@ATHENA.MIT.EDU (davidg@ctt.bellcore.com)
Mon Aug 12 19:11:16 1996
From: davidg@ctt.bellcore.com
To: www-security@ns2.rutgers.edu
Date: Mon, 12 Aug 1996 16:36:47 -0400 (EDT)
Cc: davidg@ctt.bellcore.com (David Gonzalez)
Errors-To: owner-www-security@ns2.rutgers.edu
In reference to the ActiveX control that can shutdown you Win 95 machine:
I downloade IE 3.0 Beta 2 US for Windows 95. Ran it on a stock Windows 95
system. (I also dowloaded the signature verification module from MS).
Visited the page: http://www.halcyon.com/mclain/ActiveX/welcome.html
clicked on Exploder
Then i got the following warning box:
A Windows application is attemtping to open or install the following
software component:
http://www.halcyon.com/mclain/ActiveSX/Exploder.ocx
This component has not been digitally "signed" by its publisher. It may
contain viruses or otherwise harm your computer. Do you wish to continue?
[Yes] [No -default]
---
Clicked on Yes, got the following warning dialog box:
This page contains an ActiveX control with data that is not known to
be safe. Do you want to allow it be used?
If you are sure it is safe execute this command, click Yes. [Sic]
If you are sure this entire page is safe, click Yes to all.
Otherwise, click No or No to all.
[No to All] [No] [Yes-Def] [Yes to All]
--
Clicked on Yes, some hard disk hum, and the usual Please wait for data
to be written to disk, and You can turn the system off now.
So, it indeed can do what it claims to (shutdown a Windows 95 system) however
you are given two warnings that something odd may happen.
On the other hand, when I did this a second time, I did not get the
first dialog box (the one about lacking signature). I did get two boxes
very similar to the one about safe execute.
--
-----------------------------------------------------------------|
David Gonzalez | Security & Fraud Solutions |
Bellcore | davidg@ctt.bellcore.com - (908)699-3931 |
RRC 1-K233 |------------------------------------------|
444 Hoes Lane |Dislaimer: These are my opinions and I do |
Piscataway, NJ 08854 | not speak for Bellcore. |
