Note To Self
Wednesday 7th November, 2007 23:33 Comments: 6
This looks evil. Must look into how easy it is to abuse this. So much for Firefox being the safer browser ;)
Sadie - Thursday 8th November, 2007 14:58 Admittedly I don't come from a security background, but I don't get it. The jar: protocol only delivers files that are embedded in the jar/zip/odt file, it doesn't (that I can see) open up server-side scripting opportunities. And if all it can do is run code on the client side, well, we tend to assume the client is insecure and trying to screw with us anyway don't we?
What am I missing?
What am I missing?
Colour me stupid. It was talking about a bad site (or user-generated content on an insecure site) being used to compromise the client.
Kind of a dull hospital green, I imagine.
Actually, I blame the website. Looking through a few of their other articles, they seem to be very alarmist. I'm not saying that any of the vulnerabilities they report are untrue, but their response to each one tends to be "Oh noes! Running a PDF/website/Word document/operating system of any sort can result in your computer being completely taken over! Don't use your computer for anything! Evar!"
Actually, I blame the website. Looking through a few of their other articles, they seem to be very alarmist. I'm not saying that any of the vulnerabilities they report are untrue, but their response to each one tends to be "Oh noes! Running a PDF/website/Word document/operating system of any sort can result in your computer being completely taken over! Don't use your computer for anything! Evar!"
user-generated content on an insecure site
That's what I was thinking about, perhaps a Sharepoint server (except, IIRC, it sends the Content-Disposition header so the browser will offer to save the file instead) or other similar website that allows you to upload safe looking files.