Scott Culp
Scott Culp
ability attacks command denial operating remote says service shell system whether
Whether or not an operating system has a remote command shell says nothing about its ability to withstand other attacks such as denial of service attacks.
explorer exposes fairly hostile information internet microsoft model powerful program run script security site web
The Microsoft Internet Explorer security model allows a Web site to run any script or program that it trusts. The program exposes some fairly powerful functionality that allows a hostile Web site to glean information from a user's machine.
applying becoming certainly customer devices folks great interest patch return safe sufficient turn
There is great customer interest in UPnP, especially as more UPnP-capable devices are becoming available. Folks who don't want UPnP can certainly turn off the service, but just applying the patch is sufficient to return it to safe operation.
files machine name selected site users web
The only thing that a Web site can do with this is read selected files from a users machine if they know the name of the file.
computer netscape powerful problem putting run script site taking web
The real problem is Netscape Communicator taking a powerful script and putting it out on your computer in a locale where any Web site can find it out and run it.