Bugtraq mailing list archives

Re: [funsec] WMF round-up, updates and de-mystification

From: Pierre Vandevenne <pierre () datarescue com>
Date: Tue, 3 Jan 2006 12:47:49 +0100

Good Afternoon,

Tuesday, January 3, 2006, 9:28:40 AM, you wrote:

GE> The "patch" by Ilfak Guilfanov works, but by disabling a DLL in Windows.

I wouldn't say it does that. If you really want to simplify it in the
extreme, it hides the vulnerable function. The patch was, imho done
precisely to avoid disabling the dll, and because disabling the dll
wasn't necessarily successful in all cases.

-- 
Best regards,
Pierre                            mailto:pierre () datarescue com

Current thread:

WMF round-up, updates and de-mystification Gadi Evron (Jan 03)
- Re: [Full-disclosure] WMF round-up, updates and de-mystification Nancy Kramer (Jan 03)
- Re: [Full-disclosure] WMF round-up, updates and de-mystification InfoSecBOFH (Jan 03)
  - RE: [Full-disclosure] WMF round-up, updates and de-mystification Larry Seltzer (Jan 03)
- Re: [funsec] WMF round-up, updates and de-mystification Pierre Vandevenne (Jan 03)
  - Re: WMF round-up, updates and de-mystification Gadi Evron (Jan 03)
  - RE: [funsec] WMF round-up, updates and de-mystification Larry Seltzer (Jan 03)
    - Re[2]: [funsec] WMF round-up, updates and de-mystification Pierre Vandevenne (Jan 04)
- Re: WMF round-up, updates and de-mystification Adam Shostack (Jan 04)
- <Possible follow-ups>
- RE: WMF round-up, updates and de-mystification Krpata, Tyler (Jan 04)