This is very very bad. We all know what happened when an IIS buffer overflow was exploited... Personally, If I was a hacker, I'd send a nice hacked flash file to my nearest target administrator, embed a bit of code that gets the users password hash from WinNT+ or /etc/passwd and sends it off to be logged.
A buffer overflow in something trusted like Flash is really really bad imho. -- jon mailto:[EMAIL PROTECTED] Friday, August 9, 2002, 1:15:48 PM, you wrote: HM> Do you one better: HM> .---. .---------- HM> / \ __ / ------ HM> / / \( )/ ----- HM> ////// ' \/ ` --- HM> //// / // : : --- HM> // / / /` '-- HM> // //..\\ HM> ====UU====UU==== HM> '//||\\` Macromedia Flash plugin can read local files ______________________________________________________________________ Structure your ColdFusion code with Fusebox. Get the official book at http://www.fusionauthority.com/bkinfo.cfm Archives: http://www.mail-archive.com/[email protected]/ Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists
