[20282] in bugtraq
Re: Double clicking on innocent looking files may be dangerous
daemon@ATHENA.MIT.EDU (Michael C. Bazarewsky)
Wed Apr 18 03:14:51 2001
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Message-ID: <F33EBDFA1786D11182F0006097D512291C2628@SANTSRV1>
Date: Tue, 17 Apr 2001 16:47:27 -0400
Reply-To: "Michael C. Bazarewsky" <BazarewskyM@SOFTWARE-ANSWERS.COM>
From: "Michael C. Bazarewsky" <BazarewskyM@SOFTWARE-ANSWERS.COM>
To: BUGTRAQ@SECURITYFOCUS.COM
I believe the true source of this issue may be Explorer not properly
checking to see if a "directory junction point" / "folder junction point" is
really a folder or is a file. The "FolderName.{CLSID}" syntax for creating
a folder junction point has been around since Win95 and is documented in
MSDN; see for example
http://msdn.microsoft.com/library/psdk/shellcc/shell/Shell_Adv/nse_junction.
htm
or
http://msdn.microsoft.com/library/periodic/period96/S332.htm
Doing the same operation with a folder instead of a file, in this case using
the HTML Application CLSID, leads to an IE error message.
I'm not going to get into whether the folder-level functionality should
exist in this fashion or not.
-- Mike Bazarewsky
