All the Perl that's Practical to Extract and Report
use Perl Log In
rjray (1649)
(email not shown publicly)
http://www.rjray.org/
AOL IM: rjrayperl (Add Buddy, Send Message)
Yahoo! ID: rjray_perl (Add User, Send Message)
Jabber: rjray@jabber.org
More Fun with Internet Exploder
There's a new IE exploit in town, pilgrim, and this time it's aiming for your cupholder, err, CD-ROM tray. This code apparently opens all CD-ROM drives when IE encounters it:
<SCRIPT LANGUAGE="VBScript">
<!--
Set oWMP = CreateObject("WMPlayer.OCX.7")
Set colCDROMs = oWMP.cdromCollection
if colCDROMs.Count >= 1 then
For i = 0 to colCDROMs.Count - 1
colCDROMs.Item(i).Eject
Next ' cdrom
End If
-->
</SCRIPT>
If you are vulnerable, you may have noticed by now that in addition to the HTML-escaped version of the code above, I have also included the real code itself in this entry. I did this to share the joy with you. And because I can be a real bastard that way.
Update: Removed the VBScript because pudge was apparently smart-enough to have the Slash code look for that kind of crap and fix it up.
Or is it a BUG?"
"Let's call it an accidental feature. :-)"
--Larry Wall in <6909@jpl-devvax.JPL.NASA.GOV>
Hahaha (Score:1)
Thanks for sharing!
Not only MSIE... (Score:1)
brilliant (Score:2)
I just put that code on the Wiki and CDROM drives are opening all over :) Excellent for my continuous pro-Mozilla stance.
-- Robin Berjon [berjon.com]
funny, but... (Score:1)
I should have done this initially... (Score:2)
The original trick was shown here [ntlworld.com].
The explanation of the code is here [waxy.org].
--rjray