[2616] in WWW Security List Archive
Re: ActiveX security hole reported.
daemon@ATHENA.MIT.EDU (Alan Batie)
Wed Aug 14 20:22:35 1996
From: batie@aahz.jf.intel.com (Alan Batie)
To: garym@softshore.com.au (Gary Meltzer)
Date: Wed, 14 Aug 1996 14:34:52 -0700 (PDT)
Cc: stephen@iu.net, trei@process.com, www-security@ns2.rutgers.edu
In-Reply-To: <B0000005189@twice.softshore.com.au> from "Gary Meltzer" at Aug 14, 96 11:27:33 am
Errors-To: owner-www-security@ns2.rutgers.edu
> How does this control differ from an HTML page that tells
> readers to turn the power switch off?
Because this control could instead say "click here to win a million dollars",
and could email your quicken data base (with checkfree access codes and visa
numbers) instead of merely powering down your pc.
--
Alan Batie ------ What goes up, must come down.
batie@aahz.jf.intel.com \ / Ask any system administrator.
+1 503-264-8844 (voice) \ / --unknown
D0 D2 39 0E 02 34 D6 B4 \/ 5A 41 21 8F 23 5F 08 9D
