ComputerWorld: ActiveX security glitch found in Explorer 5.0Aug 26, 1999, 16:06 (0 Talkback[s])
(Other stories by Kathleen Ohlson)
"A security flaw discovered in Microsoft Corp.'s Internet Explorer 5.0 could allow hackers to create a new file on a user's machine that kicks in the next time it's rebooted. ...the issue is with an ActiveX control shipping with Explorer 5.0 for Windows 95 or 98.
Hackers can exploit the code, using it to create new files or write over existing ones when users visit a Web site..."
"The flaw can also be launched by e-mail to users of Outlook 98 or 2000 if they allow scripts to run. Outlook 98 or 2000 can check for scripts if users have set up the software to do so... Users are also susceptible to the hole through HTML if they enabled the scripting function."
0 Talkback[s] (click to add your comment)