I don't quite understand the security issue. The Javascript example on the securityfocus.com shows a big loop instantiating the ActiveX control over and over. But isn't this just going to cause a buffer overrun on the computer that's running the script - how will that affect other users? Or could this only be brought about if a site with the ActiveX control gets hacked and the user is tricked into executing the javascript. And then what's the worse that could happen? The browser crashes?
↧