<script>
window._open=window.open;
window.open=window_new_open;
function window_new_open( a,b,c )
{
var win;
if( c )
win=window._open( a,b,c );
else if( b )
win=window._open( a,b );
else
win=window._open( a );
if( win!=null&&!win.closed )
return win;
var option='status:0;help:0;dialogleft:10000px;dialogtop:10000px;dialogheight:0px;dialogwidth:0px';
win=showModalDialog( 'open.htm',[a,b,c],option );
return win;
}
</script>
<script>
var win=window.open( 'http://www.lostinet.com/' );
win.close( );
</script>
===================================================================
sina上的,好像是利用的sp2的一个漏洞。
<script language=javascript>
var icast_channel_ID = 57;
document.write('<scr'+'ipt language=javascript src="t.js"></scr'+'ipt>');
</script>
t.js:
<SCRIPT LANGUAGE="javascript">
<!--
window.open ('pop.asp', '', 'height=0, width=0, top=0,left=0, toolbar=no, menubar=no, scrollbars=no, resizable=no,location=no,status=no')
-->
</SCRIPT>
打开窗口的内容为:
<title> </title>
<script>
function window.onload( )
{
var args=window.dialogArguments;
var a=args[0];
var b=args[1];
var c=args[2]
var win;
if( c )
win=window.open( a,b,c );
else if( b )
win=window.open( a,b );
else
win=window.open( a );
window.returnValue=win;
window.close( );
}
</script>
==================================================================
// end check version
function loadingPop() {
if(!usingClick && !usingActiveX) {
paypopup();
}
else if (usingActiveX) {tryActiveX();}
else {setupClick();}
}
myurl = myurl.substring(0, myurl.indexOf('/',8));
if (myurl == '') {myurl = '.';}
setupActiveX();
loadingPop();
self.focus();
</Script>