tc17
join:2003-08-14 | reply to bokamba
Re: Scary!
I must be missing something, because when I use IE to open this file, it opens it as an html file. When I use Mozilla Firebird, it wants to open it as an html file also. |
|
Nam Vet
Premium
join:2001-12-03
Allentown, PA
2 edits | 
I E 6 | 
FIREBIRD |
yes it is a html file but you are led to believe its a pdf!
it's the download dialog box that is not letting you know the correct file type!
if you chose to open this file thinking its a pdf does acrobat reader open? NO!!!
Although if you download the file (at least in the case of this exploit demo) and then try to open it windows now thinks its a pdf because of its extension.
so after downloading it when you try to open it acrobat reader opens but you get an error message either because its zero bytes or because its an html file.
If the demo actually was not zero bytes and you did download an html file either windows explorer would append the correct extension to the file(maybe) or if it still said it was a pdf then acrobat would try to open it but you would get an error message (from acrobat reader) that the file was an invalid format.
using a zero byte file for this demo was not the right thing to do, however the demo is correct in pointing out that the IE download dialog box shows an incorrect extension or does not reveal (NOTE THE EMPTY "FILE TYPE" LINE) The correct file type
btw using firebird is not the same thing!
it's download dialog box lets you know its an html file!
--
H O W T R U E : If you want something done, ask a busy person to do it |
|
