|
-
supervillain
MS Internet Explorer Clipboard exploit...
This is actually pretty cool, but it's an exploit nonetheless.
Love Internet Explorer? Ever copy in some passwords, addresses, or other data from an Excel or Word documents?
You might want to rethink that...
I just found a "nice" piece of javascript that actually reads out the contents of my clipboard when I'm using IE...
Try it out for yourself:
http://oeh.network-electronics.com/~...clipboard.html
It's safe, I'm not storing anything. But if you don't trust me, make sure not to have anything secret/sensitive in the copy/paste buffer. And you should of course not trust me. Using Opera, I get nothing. Using IE6 I get the last clipboard entry. I'm really not happy about this.
The php script which reads the form data from the javascript thingie prints out the HTML/javascript used for the excercise...
Luckily I use Opera most of the time, or I would feel a bit awkward right now. Not that I usually have much sensitive data in my clipboard, but you never know when you might have come across a website with a hidden clipboard extractor like this (it doesn't have to auto-submit, it could of course be a part of a login procedure or something, with SQL insert statements instead of prints in the PHP...).
-
Banned
-
Phantom Flasher...
I belive this to be ooooollllddd gerbarino! 
-
supervillain
 Originally Posted by Markp.com
I belive this to be ooooollllddd gerbarino!
Show me the link here at Flashkit.
-
Senior Member
Vincent
SWIS BV
Last edited by Markp.com on 07-23-2003 at 02:25 AM
-
supervillain
Thanks for the link, Vincent. Was old afterall!
-
Senior Member
Should I post some Firefox propaganda now?
-
Senior Member
It's rather strange that it's not disabled by default. (see fix at http://support.microsoft.com/default...N-US;Q224993&). But like most things with IE it's supposed to be a feature. 
It is used by various rich-text editors to have a paste button in the toolbar.
Vincent
SWIS BV
Last edited by Markp.com on 07-23-2003 at 02:25 AM
-
Senior Member
I'm not sure, but this should work with IE too, since it is based on IE technology.
Rich Text Editor
Its the same as entering this in your location bar and hitting enter:
Code:
javascript:(function(){document.designMode=%22on%22;})()
-
Phantom Flasher...
Originally Posted by gerbick
Thanks for the link, Vincent. Was old afterall!
Told you so... if only you'd trusted my judgement, we'd be talking about something funny by now 
-
imagination through stupidity
Originally Posted by ihoss.com
Should I post some Firefox propaganda now?
i imagined that with a bunch of trumpets and a band. *playing inside my head*
Nothing to see here, move along.
-
supervillain
Originally Posted by Markp.com
Told you so... if only you'd trusted my judgement, we'd be talking about something funny by now.
I had searched... this falls under "clip board"... isn't it just one word though!?
Anyway, just asked for the link, you responded with... well. Look above.
-
Phantom Flasher...
Originally Posted by gerbick
I had searched... this falls under "clip board"... isn't it just one word though!?
Anyway, just asked for the link, you responded with... well. Look above.
Love you too suga buns... You know I'm right, I just let some other guy do the donkey work for me
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
Click Here to Expand Forum to Full Width
|
Reply With Quote