[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] PDF mailto exploit in the wild

To: Nick Boyce <nick.boyce@xxxxxxxxx>
Subject: Re: [Full-disclosure] PDF mailto exploit in the wild
From: Gregory Boyce <gboyce@xxxxxxxxxxxx>
Date: Tue, 23 Oct 2007 09:35:10 -0400 (EDT)

On Tue, 23 Oct 2007, Nick Boyce wrote:

>> # To Disable mailto (recommended)
>> Modify tSchemePerms by setting the mailto: value to 3:
>> version:1|shell:3|hcp:3|ms-help:3|ms-its:3|
>> ms-itss:3|its:3|mk:3|mhtml:3|help:3|disk:3|afp:3|disks:3|telnet:3|ssh:3|acrobat:2|mailto:3|file:2
>
> And now I'm having heart palpitations ... can anyone explain the
> function of the "telnet" and "ssh" parts of that little registry entry
> ?

So that you can have ssh:// or telnet:// links within a document.

--
Another Boyce

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Follow-Ups:
- Re: [Full-disclosure] PDF mailto exploit in the wild
  - From: Nick Boyce

References:
- [Full-disclosure] PDF mailto exploit in the wild
  - From: Paul Szabo
- Re: [Full-disclosure] PDF mailto exploit in the wild
  - From: Nick Boyce

Prev by Date: Re: [Full-disclosure] PDF mailto exploit in the wild
Next by Date: [Full-disclosure] Airscanner Mobile Security Advisory #07101401: Mobile-spy Victim/User Phone/SMS/URL Log Spoofing and Persistent XSS Injection
Previous by thread: Re: [Full-disclosure] PDF mailto exploit in the wild
Next by thread: Re: [Full-disclosure] PDF mailto exploit in the wild
Index(es):
- Date
- Thread