Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Bugtraq> 1999-q3

Bugtraq Archives: Re: IE 5.0 allows executing programs

Re: IE 5.0 allows executing programs

: dp : (dap24BEER.COM)
Thu, 2 Sep 1999 18:56:39 -0700

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Next message: John Kennedy: "Re: Root shell vixie cron exploit"
Previous message: Przemyslaw Frasunek: "Re: Babcia Padlina Ltd. security advisory: mars_nwe bu"
In reply to: Taneli Huuskonen: "Re: Babcia Padlina Ltd. security advisory: mars_nwe buffer"
Next in thread: Exchange: "Re: IE 5.0 allows executing programs"

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

You can manually download the updates at
http://www.microsoft.com/windows98/downloads/corporate.asp

Personally, I prefer to actually save the update files so that I don't
need to download everything all over again whenever windows breaks and
I have to reinstall (which is pretty often).

David

- -----
dap24beer.com
http://neongoat.netpedia.net
PGP Key ID/Fingerprint:
0xF90FFFE5 / F362 51F7 6D51 85EB AF68 75B9 D29B 1AFC F90F FFE5
- -----

- -----Original Message-----
From: Jens Benecke <jensPINGUIN.CONETIX.DE>
To: BUGTRAQSECURITYFOCUS.COM <BUGTRAQSECURITYFOCUS.COM>
Date: Thursday, September 02, 1999 6:30 PM
Subject: Re: IE 5.0 allows executing programs

>On Sat, Aug 28, 1999 at 10:44:32AM -0400, Jesper M. Johansson wrote:
>
>> >Actually, the setting that goes right to the heart of this one is
>> >"Script ActiveX Controls Marked Safe For Scripting". Default for
>> >"Internet Zone" is Enable. It is probably safest to set it to
either
>> >disable or prompt.
>> I don't know that you want it as a trusted site, but I realized
yesterday
>> that Windows Update needs to be able to "Script ActiveX Controls
Marked
>> Safe For Scripting." Thus, if you want to be able to use Windows
Update,
>> you must set this to either enable or prompt.
>
>That is not true. You can also download the Update files 'manually',
>without having to tell Microsoft about your digestion problems and
>grandmothers. It's hidden somewhere in
www.microsoft.com/windows/update/ or
>something, I'll dig out the URL in case anyone needs to know.
>
>Strangely(0), Netscape/Windows barfs out when visiting that page -
>Netscape/Linux displays it though.
>
>
>(0) NOT
>
>--
>_ciao, Jens_______________________________
http://www.pinguin.conetix.de
>
>There are more than 1000 chemicals in brand coffee, of which 26 have
been
>tested and examined. Of those 26, 24 caused cancer in lab rats.
>
-----BEGIN PGP SIGNATURE-----
Version: PGP 6.0.2

iQA/AwUBN88q1tKbGvz5D//lEQIOjgCeMwZC0l09tXEJX2btLAIXKnagN6oAoPyi
s7IQgfO69wk2I/ZYh/+ZAFt6
=k4E/
-----END PGP SIGNATURE-----

Next message: John Kennedy: "Re: Root shell vixie cron exploit"
Previous message: Przemyslaw Frasunek: "Re: Babcia Padlina Ltd. security advisory: mars_nwe bu"
In reply to: Taneli Huuskonen: "Re: Babcia Padlina Ltd. security advisory: mars_nwe buffer"
Next in thread: Exchange: "Re: IE 5.0 allows executing programs"

This archive was generated by hypermail 2.0b3 on Thu Sep 09 1999 - 09:01:51 CDT