funsec mailing list archives

Re: Image-handling flaws put Windows PCs at risk

From: "Richard M. Smith" <rms () computerbytesman com>
Date: Tue, 8 Nov 2005 20:03:08 -0500

Re:
http://news.com.com/Image-handling+flaws+put+Windows+PCs+at+risk/2100-1002_3
-5940047.html?tag=nefd.top
(AKA http://tinyurl.com/amy44)

When I see these kind of bugs, I always wonder if there is some way to turn
off the unneeded feature rather than getting a patch.  Disabling the feature
protects against the next security hole in the unneeded feature......  I
also wonder if there is a some method of scanning the registry to learn
about all the image file formats that IE supports in the <img> tag and
similar tags.  Last time I checked, the GIF and JPEG formats are all we
need.

Richard 

_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

Current thread:

Re: Image-handling flaws put Windows PCs at risk Richard M. Smith (Nov 08)
- Re: Re: Image-handling flaws put Windows PCs at risk Jeff Rosowski (Nov 08)
- <Possible follow-ups>
- RE: Re: Image-handling flaws put Windows PCs at risk Wolfe, James M (Nov 09)
  - RE: Re: Image-handling flaws put Windows PCs at risk Richard M. Smith (Nov 09)
  - RE: Re: Image-handling flaws put Windows PCs at risk Barrie Dempster (Nov 10)
    - RE: Re: Image-handling flaws put Windows PCs at risk James Eaton-Lee (Nov 10)
- RE: Re: Image-handling flaws put Windows PCs at risk Wolfe, James M (Nov 10)
  - RE: Re: Image-handling flaws put Windows PCs at risk Barrie Dempster (Nov 10)
    - RE: Re: Image-handling flaws put Windows PCs at risk Drsolly (Nov 10)
    - RE: Re: Image-handling flaws put Windows PCs at risk James Eaton-Lee (Nov 10)
    - RE: Re: Image-handling flaws put Windows PCs at risk Drsolly (Nov 10)