[14342] in bugtraq
Re: IE and Outlook 5.x allow executing arbitrary programs using .
daemon@ATHENA.MIT.EDU (Schoedel, Christine)
Mon Mar 20 04:44:33 2000
Mime-Version: 1.0
Content-Type: multipart/alternative;
boundary="----_=_NextPart_001_01BF9032.AEEA04C0"
Message-Id: <06EBB56FC56DD2118F7A00A0C9E1D603FD8306@internalmail.clicknet.com>
Date: Fri, 17 Mar 2000 09:03:14 -0800
Reply-To: "Schoedel, Christine" <cschoedel@CLICKNET.COM>
From: "Schoedel, Christine" <cschoedel@CLICKNET.COM>
X-To: BUGTRAQ@SECURITYFOCUS.COM
To: BUGTRAQ@SECURITYFOCUS.COM
This message is in MIME format. Since your mail reader does not understand
this format, some or all of this message may not be legible.
------_=_NextPart_001_01BF9032.AEEA04C0
Content-Type: text/plain;
charset="iso-8859-1"
It also works on NT Workstation 4.0 SP4, IE 5.00.2314.1003, Outlook 2000.
It prompts to save or run - if I choose Run, it works. If I choose Cancel,
it works. If I close the box with Esc, it still works.
Chris
-----Original Message-----
From: Ryan Russell [mailto:ryan@SECURITYFOCUS.COM]
Sent: Wednesday, March 15, 2000 9:25 AM
To: BUGTRAQ@SECURITYFOCUS.COM
Subject: Re: IE and Outlook 5.x allow executing arbitrary programs using
.eml files
On Tue, 14 Mar 2000, Georgi Guninski wrote:
> Georgi Guninski security advisory #9, 2000
>
> IE and Outlook 5.x allow executing arbitrary programs using .eml files
>
Works fine on NT4 Server, SP5, IE 5.00.2919.6307, but it prompts whether I
want to save it or run it. If I run it, wordpad is launched. This is
from the web page demo.
Ryan
------_=_NextPart_001_01BF9032.AEEA04C0
Content-Type: text/html;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
<HTML>
<HEAD>
<META HTTP-EQUIV=3D"Content-Type" CONTENT=3D"text/html; =
charset=3Diso-8859-1">
<META NAME=3D"Generator" CONTENT=3D"MS Exchange Server version =
5.5.2448.0">
<TITLE>RE: IE and Outlook 5.x allow executing arbitrary programs using =
.eml files</TITLE>
</HEAD>
<BODY>
<P><FONT SIZE=3D2>It also works on NT Workstation 4.0 SP4, IE =
5.00.2314.1003, Outlook 2000. It prompts to save or run - if I =
choose Run, it works. If I choose Cancel, it works. If I =
close the box with Esc, it still works. </FONT></P>
<P><FONT SIZE=3D2>Chris</FONT>
</P>
<P><FONT SIZE=3D2>-----Original Message-----</FONT>
<BR><FONT SIZE=3D2>From: Ryan Russell [<A =
HREF=3D"mailto:ryan@SECURITYFOCUS.COM">mailto:ryan@SECURITYFOCUS.COM</A>=
]</FONT>
<BR><FONT SIZE=3D2>Sent: Wednesday, March 15, 2000 9:25 AM</FONT>
<BR><FONT SIZE=3D2>To: BUGTRAQ@SECURITYFOCUS.COM</FONT>
<BR><FONT SIZE=3D2>Subject: Re: IE and Outlook 5.x allow executing =
arbitrary programs using</FONT>
<BR><FONT SIZE=3D2>.eml files</FONT>
</P>
<BR>
<P><FONT SIZE=3D2>On Tue, 14 Mar 2000, Georgi Guninski wrote:</FONT>
</P>
<P><FONT SIZE=3D2>> Georgi Guninski security advisory #9, =
2000</FONT>
<BR><FONT SIZE=3D2>></FONT>
<BR><FONT SIZE=3D2>> IE and Outlook 5.x allow executing arbitrary =
programs using .eml files</FONT>
<BR><FONT SIZE=3D2>></FONT>
</P>
<P><FONT SIZE=3D2>Works fine on NT4 Server, SP5, IE 5.00.2919.6307, but =
it prompts whether I</FONT>
<BR><FONT SIZE=3D2>want to save it or run it. If I run it, =
wordpad is launched. This is</FONT>
<BR><FONT SIZE=3D2>from the web page demo.</FONT>
</P>
<P> =
=
=
=
<FONT SIZE=3D2>Ryan</FONT>
</P>
</BODY>
</HTML>
------_=_NextPart_001_01BF9032.AEEA04C0--
