More Fun with Internet Exploder

rjray on 2003-04-02T00:57:55

There's a new IE exploit in town, pilgrim, and this time it's aiming for your cupholder, err, CD-ROM tray. This code apparently opens all CD-ROM drives when IE encounters it:

If you are vulnerable, you may have noticed by now that in addition to the HTML-escaped version of the code above, I have also included the real code itself in this entry. I did this to share the joy with you. And because I can be a real bastard that way.

Update: Removed the VBScript because pudge was apparently smart-enough to have the Slash code look for that kind of crap and fix it up. :-).

---

Hahaha

Juerd on 2003-04-02T06:36:26

This one's extremely funny :)

Thanks for sharing!

Not only MSIE...

bart on 2003-04-02T10:36:06

It works on programs that use the MSIE browser control, too, such as Kazaa, and likely numerous others.

brilliant

darobin on 2003-04-02T12:12:08

I just put that code on the Wiki and CDROM drives are opening all over :) Excellent for my continuous pro-Mozilla stance.

funny, but...

prakash on 2003-04-02T19:22:20

...this code needs Windows Media Player installed.

I should have done this initially...

rjray on 2003-04-02T22:52:19

The original trick was shown here.

The explanation of the code is here.