And the shit hits the fan.
I was wondering how long it'd take for this to surface in forums.
Basically, there -is- currently an exploit.
1. It allows people to make copies of items they see, including contents.
2. They get next-owner perms on the items, as if they had been given the object
3. in case of no-copy items..well. that items is lost to the original owner.
Linden Labs has been notified of this exploit over a month ago, and they -are- in the process of fixing it.
Sadly enough, that exploit is a 'feature' deeply deeply rooted in the whole inventory and asset system that hasn't been thought through, and I personally think the randomly failing 1.23 releases actually might be credited to this being a hard fix.
Also, no, this is not possible with the plain
SL client or copybot.
In regards to the initial post, the person logged in with a special app and stole the attached items straight from the owner inventory, as they were able to see the attachments. Due to them being no-copy..zing. there you have it.
This has been fixed afaik in the few 1.23 regions that have been deployed. The person who originally reported it to LL has tested this.
personally I'm glad this hasn't become more widespread knowledge before this 1.23 deploy. Some people have been fearing for the worst. But let's say that alot of things -have- been copied.
Again tho: not fullperm, simply next-owner perms.
final note:
GTeam knows about the exploit. Report the person who stole the attachments, and they will be banninated.