Re: Could ................
by "Nasser Dassi" <nd264(at)is9.nyu.edu>
|
| Date: |
Mon, 8 May 2000 00:46:07 -0400 |
| To: |
"Cyanide _7" <leo7278(at)hotmail.com>,
"HWG-Languages" <hwg-languages(at)hwg.org> |
| References: |
hotmail |
| |
todo: View
Thread,
Original
|
|
I will keep this short as to attempt to keep this on-topic :o)
What actions you ask. Viewing a web page with client-side dynamic content
would suffice. Downloading explicitly is not necessary. (I know, this is
scary... it's been potentially capable since the 3.0 versions of browsers
had been released.)
True... permission in scripts is necessary, but it's unfortunate that many
browsers have security flaws... exploiting such flaws in cooperation with
malicious script would do the trick.
And, why not until now? It has always been around... it's just that the
negative effects were not as damaging (so the news would not cover it as
much).
From an article I read on CNET.com last week, a security expert blames
Microsoft for making their tools accessible to developers. Quite
interesting how many critiques want Microsoft to open up their code... yet,
they don't want to feel the wrath... Hahaha :o)
Well, to prevent exhaustion of this topic, i think it should continue
OFF-LIST, on the MS newsgroup mentioned earlier... or in private emails.
The scripting languages discussion is no longer reached :o)
Yours,
Nasser Dassi
----- Original Message -----
From: Cyanide _7 <leo7278(at)hotmail.com>
To: <nd264(at)nyu.edu>
Cc: <hwg-languages(at)hwg.org>
Sent: Sunday, May 07, 2000 11:23 PM
Subject: Re: Could this virus exploit end up embedded ...
> just curious, what actions would the viewer have to take for such a script
> to maliciously attack the client machine? merely viewing? downloadig? i
> thought such scripting languages required permission to access the client
> machine. also, why has this never been an issue until now?!? - Cyanide_7
>
HWG: hwg-languages mailing list archives,
maintained by Webmasters @ IWA