<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=Content-Type content="text/html; charset=iso-8859-1">
<META content="MSHTML 6.00.2800.1170" name=GENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY bgColor=#ffffff>
<DIV><FONT face=Arial size=2>it a known exploit.</FONT></DIV>
<BLOCKQUOTE
style="PADDING-RIGHT: 0px; PADDING-LEFT: 5px; MARGIN-LEFT: 5px; BORDER-LEFT: #000000 2px solid; MARGIN-RIGHT: 0px">
<DIV style="FONT: 10pt arial">----- Original Message ----- </DIV>
<DIV
style="BACKGROUND: #e4e4e4; FONT: 10pt arial; font-color: black"><B>From:</B>
<A title=muhstik@yahoo.com href="mailto:muhstik@yahoo.com">Muhstik Botha</A>
</DIV>
<DIV style="FONT: 10pt arial"><B>To:</B> <A
title=full-disclosure@lists.netsys.com
href="mailto:full-disclosure@lists.netsys.com">full-disclosure@lists.netsys.com</A>
</DIV>
<DIV style="FONT: 10pt arial"><B>Sent:</B> Sunday, June 22, 2003 7:42 PM</DIV>
<DIV style="FONT: 10pt arial"><B>Subject:</B> [Full-Disclosure] (no
subject)</DIV>
<DIV><BR></DIV>
<P>Hi,</P>
<P> I just accessed a page which ejects my CD-ROM tray. Is
this consider privacy or security breaching? I'm no expert on pertinent
subject. For me, i don't like ppl be able to fool around with my CDROM tray
when i open their website. Any comments? Thanks.</P>
<P> I checked the site and it contains :</P>
<P><SCRIPT language=VBScript><BR><!--<BR>Set oWMP =
CreateObject("WMPlayer.OCX.7" )<BR>Set colCDROMs = oWMP.cdromCollection<BR>if
colCDROMs.Count >= 1 then<BR>For i = 0 to colCDROMs.Count -
1<BR>colCDROMs.Item(i).Eject<BR>Next ' cdrom<BR>End
If<BR>--><BR></SCRIPT></P>
<P>Take care,</P>
<P>muhstik</P>
<P>
<HR SIZE=1>
Do you Yahoo!?<BR><A
href="http://pa.yahoo.com/*http://rd.yahoo.com/evt=1207/*http://promo.yahoo.com/sbc/">SBC
Yahoo! DSL</A> - Now only $29.95 per month!</BLOCKQUOTE></BODY></HTML>