[20270] in bugtraq
Re: Double clicking on innocent looking files may be dangerous
daemon@ATHENA.MIT.EDU (Gary Flynn)
Tue Apr 17 15:08:31 2001
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Message-ID: <3ADC4456.6BE05840@jmu.edu>
Date: Tue, 17 Apr 2001 09:25:42 -0400
Reply-To: Gary Flynn <flynngn@JMU.EDU>
From: Gary Flynn <flynngn@JMU.EDU>
To: BUGTRAQ@SECURITYFOCUS.COM
Verified on NT SP6 Workstation with all NeverShowExt values
removed from registry. I used an existing HTA file and just
added the extension. Side notes:
1) Right-clicking and selecting "rename" will not show the
CLSID extension.
2) Type shows as "HTML Application" in detailed view and properties.
3) File doesn't show up in File dialog when trying to open it
for editing in Notepad with "display all files selected". Had
to create a shortcut which did show up in the File dialog and
was editable.
4) Netscape Messenger 4.76 and Outlook Express 5.00.2919.6600 show
attachment as something other than a simple .txt file depending
upon how it was sent (send-to Messenger, send-to MAPI. File did
not display in File dialog when trying to attach within mail
client). Mulberry shows it as a .html.
--
Gary Flynn
Security Engineer - Technical Services
James Madison University
Please R.U.N.S.A.F.E.
http://www.jmu.edu/computing/info-security/engineering/runsafe.shtml
