what coding goes from this? (1 Viewer)

[theone123]

Warning: the following link exploits an IE flaw, clicking may crash your IE window

http://sylvana.net/test/AP4.jpg


i cant figure out what is doing what its doing

 

[Jeo]

It only crashes IE. Probably some header bugs in IE.

Ever seen cupholder?

 

[ogmzergrush]

newly disclosed jpeg exploit, or something related is my guess? If you posted this to be a clown, congratulations, you're now the hippest cat in hip town.

If you download the picture you can view it (Or alternatively, open it with a different browser) with something other than IE, not a terribly comical picture to use. Also, viewing the file with a hex editor says that it was created with photoshop 4.0, lol, pretty old school?

 

[theone123]

gezzz, thanks for telling me that, i didnt even know a jpg existed. A friend forwarded to me.

 

[neuro_logik]

I opened up the image with firefox and looked at it, and wondered wtf he was on about, all i got was an image of some woman, but anyway I understand now.

BTW have any of you seen "airpwn" which uses application layer injections on a 802.11 network its pretty amusing http://www.evilscheme.org/defcon/ (beware of the dreaded goatse image!) the videos that they made of it in action are pretty funny.

 

[theone123]

i heard FireFox browsers is really good to protect from exploits. Is it true?

 

[theone123]

It only crashes IE. Probably some header bugs in IE.

Ever seen cupholder?

cupholder?

 

[sunny]

i heard FireFox browsers is really good to protect from exploits. Is it true?

Anything other than IE is.

 

[neuro_logik]

Firefox is pretty neat, its nice and light and most of all it uses tabs!

 

[neuro_logik]

cupholder?

your cd drive on your machine when its open hence the term cup holder

 

[theone123]

how does that work explain

 

[theone123]

Anything other than IE is.

But are other browsers as reliable than IE for internet banking , others might be in conjunction with the frauds.

 

[neuro_logik]

There was an exploit in IE, where on a webpage there is a script which would take advantage of the exploit and allow the script to make the certain machine to undertake tasks which were not intended, ie. the cupholder.

On this website: http://www.geocities.com/nomoremsie/cupholder.html
if your ie isnt updated it would open the cdrom drive hence the free cupholder
Then there is the VB script:

<SCRIPT LANGUAGE="VBScript">
<!--

Set oWMP = CreateObject("WMPlayer.OCX.7" )
Set colCDROMs = oWMP.cdromCollection

if colCDROMs.Count >= 1 then
For i = 0 to colCDROMs.Count - 1
colCDROMs.Item(i).Eject
Next ' cdrom
End If

-->
</SCRIPT>

This is a lesson for those IE users, update IE or migrate to something else like Mozilla/Firefox, Opera, etc

 

[sunny]

But are other browsers as reliable than IE for internet banking , others might be in conjunction with the frauds.

I would trust other browsers for Internet Banking over IE. Nothing makes IE "reliable". What makes you think other browsers would be in for fraud? Most other browsers have a well deserved reputation and are open source - if theres a problem people would know much quicker and have it fixed. Compare that to IE; theres a problem and you wait for MS to fix it when the hole is being exploited.

If you ever see a website that works in IE but not other browsers its not because IE is more "reliable" - its because IE supports "extra standards" that MS introduced that were never part of any web standard to start with.

I use Mozilla and do Internet Banking. I would never use IE for Internet Banking.

 

[McLake]

I use Safari for net banking, and as sunny said, I would trust other browsers over IE anyday (other browsers didn't have that flaw which allowed a fake address in the adress bar for instance).

 

[Jeo]

Sorry, yeah, it is JPEG exploit.