|
|
Posted by TC on 09/13/06 09:10
TC wrote:
> I haven't tested that case myself, but, I'm absolutely confident that
> MS know what they are doing with this, and therefore, that it would
> *not* serve to elevate the untrusted page's security zone. But I will
> test this in due course.
Here's what I'm guessing:
o A page author can *not* use an MOTW in such a way as to illegally
elevate the priviliges of that page *when the page is run from the
relevant site on the web*. IE will prevent this somehow. (Perhaps it
will delete the illegal MOTW, or put the various MOTWs in some
particular order in the file, or whatever.)
But:
o A person with access to the local filesystem can add an MOTW to a
page, so when that page is run *from disk*, it will have higher
priviliges that it had when it was run from the web. *But*, that's not
a break, because a person with access to the local filesystem can break
the system in arbitrary other ways, independent of the presence or
absence of MOTWs.
I'll see if testing confirms all this. But not now, as I am off for a
meal.
TC (MVP MSAccess)
http://tc2.atspace.com
Navigation:
[Reply to this message]
|