ActiveX, Java, & Scripting
ActiveX Exploder
 
ActiveX - Is It Worth the Risk?
 
ActiveX Security (Richard M. Smith) Popular!
 
ActiveX Viruses
 
Are Microsoft ActiveX Controls Dangerous?
 
Browser Crashes (Richard M. Smith) Popular!
 
CERT
  • FAQ's About Malicious Web Scripts Redirected by Web Sites
    http://www.cert.org/tech_tips/malicious_code_FAQ.html
  • Malicious HTML Tags Embedded in Client Web Requests
    http://www.cert.org/advisories/CA-2000-02.html
  • Results of the Security in ActiveX Workshop
    http://www.cert.org/reports/activeX_report.pdf (PDF document)
  •  
    comp.lang.java FAQ
     
    Cookie Central - Javascript Cookie Demos
     
    The Cross Site Scripting FAQ
     
    Executing Arbitrary Commands Using ActiveX
     
    Georgi Guninski's Home Page Popular!
     
    GreyMagic - Internet Explorer Advisories Popular!
     
    Hostile Applets
     
    HostileCode.com
     
    iDEFENSE - Evolution of Cross-Site Scripting Attacks
     
    IE Hacking Kit
     
    Indiana University Knowledge Base
  • What is ActiveX?
    http://kb.indiana.edu/data/afoi.html
  • What are ActiveX Controls?
    http://kb.indiana.edu/data/afqb.html
  • What is Java?
    http://kb.indiana.edu/data/acwo.html
  • What are JavaBeans?
    http://kb.indiana.edu/data/aeuj.html
  • What is JavaScript?
    http://kb.indiana.edu/data/adtz.html
  •  
    Jason Levine's Browser Security Tests Popular!
     
    Jason Levine's IE Vulnerability Tests Popular!
     
    The JavaScript Resource
     
    Java Security Hotlist - Hostile Applets
     
    Microsoft
  • ActiveX
    http://www.microsoft.com/com/tech/ActiveX.asp
  • IE4 Resource Kit - ActiveX
    http://www.microsoft.com/technet/archive/ie/reskit/...
  • IE4 Resource Kit - Active Scripting
    http://www.microsoft.com/technet/archive/ie/reskit/..
  • IE4 Resource Kit - Java
    http://www.microsoft.com/technet/archive/ie/reskit/...
  • IE4 Resource Kit - Trust-based Security for Java
    http://www.microsoft.com/technet/archive/ie/reskit/...
  • IE5 Resource Kit - Security Zones & Permission-Based Security for MS Virtual Machine
    http://www.microsoft.com/technet/prodtechnol/ie/reskit/...
  • IE6 Resource Kit - Permission Based Security for Microsoft Virtual Machine
    http://www.microsoft.com/technet/prodtechnol/ie/reskit/...
  • Q240797 - How to Stop an ActiveX Control from Running in Internet Explorer
    http://support.microsoft.com/default.aspx?scid=kb;en-us;q240797
  •  
    Nasty JavaScript Tricks
     
    NIST - Guidelines on Active Content & Mobile Code
     
    Online Security & Privacy Tests - Active Content Tests
     
    Pivx.com - Unpatched IE Security Holes Popular!
     
    Secure Internet Programming (MIT)
     
    Stupid Java Security Tricks
     
    Sun - Java Security FAQ
     
    TINY Software - ActiveX Example
     
     
    Using Back Button in IE is Dangerous
     
    Using Back Button in IE is Dangerous (demo)
     
    Weaknesses in ActiveX
     
    Whirly Wiry Web - Launch-in-IE
     
    WSHOM.OCX Exploit Test Page
    • Entries that are marked Popular! indicate web sites that are popularly recommended by other users, not necessarily the author of this web site. The author of this web site does not endorse or recommend web sites or services unless explicitly noted.

    Home [frames]          Home [no frames]

    2000-2003 Eric L. Howes