Talk:Shell Scrap Object File

Complete rewrite
I completely rewrote the page according to the give references, because the old one was quite misleading and looked too much like without giving credit. No idea of who copied who.82.60.32.111 (talk) 12:42, 23 January 2012 (UTC)

"Can't contain any malicious code"
I removed the claim that .SHS objects cannot contain any malicious code - using the "packager" utility that comes with Windows XP, I've previously managed to embed .exe files into .shs documents. In previous patches of Windows XP, I even recall a vulnerability where slashes in the path name could cause the file extension (and type and icon) to be reported incorrectly to the user when they were asked if they wanted to open the document, yet it still opened as an executable. Unfortunately, Windows 7 doesn't appear to come with %WINDIR%\system32\packager.exe, so I can't test this out any longer. 90.209.79.99 (talk) 18:15, 15 January 2013 (UTC)