[10055] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

IE 5.0 allows reading and sending local files to a remote server

daemon@ATHENA.MIT.EDU (Georgi Guninski)
Wed Mar 31 02:31:46 1999

Date: 	Tue, 30 Mar 1999 19:35:16 +0300
Reply-To: Georgi Guninski <joro@NAT.BG>
From: Georgi Guninski <joro@NAT.BG>
To: BUGTRAQ@NETSPACE.ORG

There is a security bug in Internet Explorer 5.0, which allows reading
and
sending local files to a remote server.
The problem is a bug in the DHTML edit control, which allows pasting a
filename in a FILE object. When the form is submitted via JavaScript,
the
contents of the file are sent to a remote server.

Demonstration is available at: http://www.nat.bg/~joro/fr.html

Workaround: Disable JavaScript

I would like to thank Juan Cuartango
(http://pages.whowhere.com/computers/cuartangojc/index.html) for his IE
exploits,
which helped me a lot for discovering this vulnerability!

Regards,
Georgi Guninski
http://www.nat.bg/~joro


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[10055] in bugtraq

IE 5.0 allows reading and sending local files to a remote server

daemon@ATHENA.MIT.EDU (Georgi Guninski)Wed Mar 31 02:31:46 1999

daemon@ATHENA.MIT.EDU (Georgi Guninski)
Wed Mar 31 02:31:46 1999