[2612] in WWW Security List Archive
Re: ActiveX security hole reported.
daemon@ATHENA.MIT.EDU (Mark G. Scheuern)
Wed Aug 14 15:39:59 1996
Date: Wed, 14 Aug 1996 12:27:24 -0400 (EDT)
From: "Mark G. Scheuern" <mgscheue@Oakland.edu>
To: www-security@ns2.rutgers.edu
In-Reply-To: <B0000005189@twice.softshore.com.au>
Errors-To: owner-www-security@ns2.rutgers.edu
> On Tue, 13 Aug 1996 17:57:52 -0400, stephen@iu.net wrote:
> Which part do people find the most impressive? -
> that the Win95 shutdown API works as documented
> or that all these security experts are downloading and running
> software designed to do something they don't want?
That Microsoft provides such a mechanism makes an impression, and not
in a postive way.
> How does this control differ from an HTML page that tells
> readers to turn the power switch off?
The difference isn't obvious to you?
Mark
