For a clarification on BUGTRAQ / Full-Disclosure mess, see this summary.
Compose your message here:
Manually type the following text: "C:\ is my boot drive. Incidentally, I like cheese."
This should take you to a page showing a copy of your C:\BOOT.INI file.
Naturally, this is just a naive example. The same code could be used
to divert keystrokes from web-based
games, weblog entry / comment forms, on-line chats,
captchas, etc. As such, this is be somewhat scary.
Preview of diverted keystrokes (demo only):