Safe Mode Violations
Article ID: 55569
Updated On:
Products
Cleverpath Reporter
Issue/Introduction
Summary
When CleverPath Forest & Trees is operating in safe mode (real or simulated), any attempt to execute a prohibited operation or implement a prohibited feature will cause a safe-mode violation-error FTW000653 (-653)-which stops processing. Below is a list of functions that will cause this error when operating in safe mode.
End of Life March 2012
Environment
Release:
Component: FTS
Windows 2000, Windows 2003 and Windows XP.
When the Runtime ActiveX Control is operating in safe mode, or the Developer product in simulated safe mode, the following operations and features are blocked and cause the safe mode violation error described above.
Resolution
Note: These blocked operations and features are not inherently dangerous. They can be used by an application for legitimate purposes, which is why they continue to work outside safe mode. What makes them potentially dangerous is that they could conceivably be exploited by an application designed with malicious intent. In such cases, safe mode simply blocks the operation and renders the application harmless.
| Blocked Functions | Safety Risk (based on safe mode rules) |
| Beacon('SaveAs') | Writes to local file system. |
| BrowserSavePage | Writes to local file system. (Note that the Web Browser view type is also blocked.) |
| BrowserSetFavoritesDir | Changes local system settings. (Note that the Web Browser view type is also blocked.) |
| Database('Export') | Writes to local file system. |
| DDE_Execute | Calls external program. |
| DDE_Open | Calls external program. |
| DDE_Request | Calls external program. |
| ExportWorkspaceImage | Writes to local file system. |
| File('CompactHistory') | Erases CleverPath Forest & Trees history data. |
| File('Execute') | Calls external program. |
| File('Exists') - if specified file or folder is on the local file system. The function is not blocked when a URL is specified. |
Reads local file system. |
| File('Import') | Reads from local file system. |
| File('Purge') | Writes to local file system. |
| File('Save') | Writes to local file system. |
| File('SaveAs') | Writes to local file system. |
| File('SetAutoSave') | Can cause write to local file system without user consent. (The Tools > Options > Auto Save dialog is available for the user to set autosave if desired.) |
| File('Store') | Writes to local file system. |
| File('URLDownload') | Downloads from remote system. |
| GetObject | Calls external program. |
| GetString - if global_namespace parameter is set to True |
Reads from local file system. |
| Graph('CopyToClipboard') | Outputs to Clipboard without user consent. |
| Graph('Export') | Writes to local file system. |
| Graph('Print') | Outputs to printer without user consent. |
| Menu | Simulates user selection of built-in menu items that may perform actions without user consent-view file saves, Clipboard operations, and printing view results. |
| OCX functions | Executes potentially unsafe third-party code. |
| OLE client functions | Executes potentially unsafe third-party code. |
| OSClip - all commands | Gets system information and outputs to or reads from Clipboard without user consent. |
| OSColor ('Set') | Changes local system color settings. |
| OSExit | Reboots system. |
| OSFile - all commands | Reads from or writes to local file system. |
| OSFonts('Enum') | Gets local system information. |
| OSGetEnv | Gets local system information. |
| OSGetExe | Gets local system information. |
| OSGetIni - if used to read profile files other than that of CleverPath Forest & Trees (FTW.INI), which is allowed. |
Reads local file system. |
| OSGetIniNum - if used to read profile files other than that of CleverPath Forest & Trees (FTW.INI), which is allowed. |
Reads local file system. |
| OSGetSysDir | Gets local system information. |
| OSGetVer | Gets local system information. |
| OSMap - all commands | Gets or sets local system information. |
| OSMem | Gets local system information. |
| OSPrinter - all commands | Gets or sets local system information. |
| OSPutIni | Writes to local file system. |
| OSTicks | Gets local system information. |
| OSVerInfo | Gets local system information. |
| OSVidInfo | Gets local system information. |
| QueryBuilder ('ListDictionaries') |
Reads from local file system. |
| QueryBuilder ('DictionarySaveAs') |
Writes to local file system. |
| QueryBuilder('WriteLog') | Writes to local file system. |
| Report('CopyToClipboard') | Outputs to Clipboard without user consent. Built-in menu item is available if required. |
| Report('Export') | Writes to local file system. Built-in menu item is available if required. |
| Report('Print') | Outputs to printer without user consent. Built-in menu item is available if required. |
| Send - all commands | Sends e-mail without user consent. Built-in menu item is available if required. |
| Sound('Play') | Accesses local file system. |
| Sound('Stop') | Calls external program. |
| View('CopyToClipboard') | Outputs to Clipboard without user consent. Built-in menu item is available if required. |
| View('Export') | Writes to local file system. Built-in menu item is available if required. |
| View('Print') | Outputs to printer without user consent. Built-in menu item is available if required. |
| Blocked View Types | Safety Risk (based on safe mode rules). |
| OCX Control | Hosts potentially unsafe third-party ActiveX controls. |
| OLE Container | Hosts potentially unsafe third-party controls. |
| Internet Explorer Web Browser | Hosts potentially unsafe third-party code. |
| Netscape Web Browser | Hosts potentially unsafe third-party code. |
| Blocked Add-ins | Safety Risk (based on safe mode rules). |
| OLE Automation Client | Enables CleverPath Forest & Trees to call external programs. |
| OLE Automation Server | Enables external programs to call CleverPath Forest & Trees. |
| Blocked Interface | Safety Risk (based on safe mode rules). |
| DDE | Communicates with external programs. |
Feedback
Yes
No
Powered by
