I'm sure most have already heard of this security hole in IE 55/6 or at least saw the article on /. today.

I just can't believe these things get by QA at M$.

I put up my little version of the example code here

--admin edit - URL removed

dare I click on that link?

I wouldn't if I were you

you honestly think i'd post a link causing damage to the empeg community? I'd be hunted and mamed. Nah, it's just the help for format. But it can run ANY executable within your path variable on your machine.

I could post the code for it here if you like.

There's no patch at the windows update site...any way to patch this hole up till there is?

Edit: I'd be interested in seeing that code too.

2) VENDOR STATUS:
==================
Microsoft was initially contacted 2002-10-04. After several mail
exchanges, their final response were that the technique used to run
programs with parameters from the "Local computer zone" was no security
vulnerability. A fix should instead be applied for all possibilities for
content in the "Internet zone" to access the "Local computer zone".

So basically M$ is saying it's not a hole. So I would assume no, no fix available.

Looks like I'll be using Mozilla for a day or two....

--admin edit - Script removed

Saw this in the Slashdot thread:

"Can it install Linux on the hard drive after it has formatted it?

You might think you're joking, but there would be no better way to get microsoft to quickly fix this than to create a web page that downloads a debian install floppy and starts up a network install :-)

User: Hmmm, my computer is acting subtly different, oh well...
MS: Oh no, we've lost another one!"

Although I know you intended no harm, and that the majority of the empeg community would treat this properly, I am scrubbing this thread of all references to the actual code to prevent it from turning up via a search in google or other places.

I personally think that posting exploit code for a vunerability that affects 90% or more of the internet browsing world is wrong. For the most part, people were at least decent enough to not reveal the exploit code for Windows XP (non service pack) that could do similar damage.

Sorry bout that. I posted it basically to give people an idea of the real implications of it. Some can't tell that just by looking at the code and some would just much rather prefer to click on the link to show them what it could do.

But I agree, probably for the best not to publicise it as much as possible (although can't get much worse than being on /.)

Yeah, it's amazing how many deadly "great features" Windows decided to implement. Like Scrap files (.SHS files). They are totally worthless and are a vulnerability. And all this Internet Zoning stuff. What's the deal with that anyway? Like, if you run Windows Explorer on a 9x/ME box, why does the Local Computer Zone panel on the bottom take precidence over the filesize pane? Stupid.

Every bone in my body wants to spend the rest of my life recoding a trim-ware version of Windows with just the features that are needed. <waiting to get hit over the head with an obligatory "use linux" line, and I know I should just try it becauise I LOVE command line power!>