Daniel Fisher (lennybacon.com)

SOA, DATA & THE WEB

You shall not click on the "favicons" link

Mozilla Suite and Firefox "favicons" LINK Code Execution Exploit

[...]a user clicks on a link, this code will create and launch the file c:\trojan.bat (on Windows).
On Linux and Mac OS X this code will create the file ~/trojan or /trojan[...]

Comments

Write a comment