Date: Wed, 10 Jul 2002 17:17:11 -0500
From: Matthew Murphy <mattmurphy@kc.rr.com>
To: bugtraq@securityfocus.com
Subject: Exploit: TL003/Dot Bug = Reading Non-Parsable Files
I have produced an exploit, based on Thor's advisory about
the OBJECT Cross-Domain scripting attack, that allows users
to read some types of files (e.g, INI, BAT, ...) that aren't
normally readable through most vulnerabilities.
The exploit is available at:
http://www.murphy.101main.net/localread.htm
"The reason the mainstream is thought
of as a stream is because it is
so shallow."
- Author Unknown
