Rich Cannings, Himanshu Dwivedi, Zane Lackey, and Alex Stamos
"Hacking Exposed Web 2.0: Web 2.0 Security Secrets and Solutions"
4. After installation is completed, the ActiveX control can be invoked without prompting the user in the future. Note that this item can be con?¬? gured. The gold bar in Internet Explorer 6 prompts the user of uncommonly used ActiveX controls. In IE 7, users have the option to provide granular policy about which objects can run silently, which cannot run at all, and which can run with a prompt??”this is called the ActiveX opt-in. To see an example of an ActiveX object, visit labs.isecpartners.com/HackingExposed- Web20/activex.cepted.htm. ActiveX.cepted is an ActiveX control that leverages IE. The ActiveX control in this example is built into the operating system but the controls are usually installed by the web application. The example control will invoke the Shell .Explorer class ID, which opens a web browser within the browser itself (an example of an OLE action). The code for ActiveX.cepted is as follows:
ActiveX.cepted
ActiveX.cepted
Notice that a browser within the web browser is displayed via the ActiveX control.