Re: Executable installers are vulnerable^WEVIL (case 15): F-SecureOnlineScanner.exe allows arbitrary (remote) code execution and escalation of privilege

Posted by Justin Ferguson on Dec 23

I’d mostly argue this is a user problem given that many things you
probably shouldn’t be running out of your downloads directory, which
is the crux of his base argument. That said, its not reasonable to
expect users to entirely grok the nuances of such things, and so the
easiest fix is probably for browsers to automatically place DLLs and
exes into different directories (plural) than other downloads; id est
the concept of…

Leave a Reply