[23063] in bugtraq
Minor IE System Info Disclosure
daemon@ATHENA.MIT.EDU (dzzie@yahoo.com)
Sun Nov 4 22:50:23 2001
From: dzzie@yahoo.com
To: bugtraq@securityfocus.com
Message-Id: <20011104221122.TYXC9713.mta02-srv.alltel.net@quas>
Date: Sun, 4 Nov 2001 16:11:22 -0600
I just stumbled across this the other day when i was playing... a remote
server can poll a surfers computer and determin some applications they
have installed by trying a load an image with the file:// protocol.
if the file is found on disk the javascript onload event fires..if not
the onerror event fires..
http://geocities.com/dzzie/sys_snoop1.html
you can also check out the remote system by setting an iframe src=file://
to common paths to txt or xml files..if they are found they will raise
the onload event (oddly enough .html extension wont raise event)
http://geocities.com/dzzie/sys_snoop2.html
