ie drag n drop vulnerability ?!

Discussion in 'NOD32 version 2 Forum' started by eskimo, Sep 11, 2004.

Thread Status:
Not open for further replies.
  1. eskimo

    eskimo Guest

    is this going to be addressed in some form with nod32 ?

    i m talking about the method where a user clicks an image for example which is treated as the drag and when he lets go of the mouse it treats it as a drop and drops a file into a folder that was invisibly popped up behind the image.
    this could be the start up folder for example so a trojan could be executed from there. the german heise.de website has various browser tests .. unfortunately it is in german and i havent been able to find an equally good english site http://www.heise.de/security/dienste/browsercheck/demos/ie/
     
Thread Status:
Not open for further replies.