Re: WMF round-up, updates and de-mystification

["Fergie" <fergdawg () netzero net>]

For what it's worth, the folks over at the ISC have put
togather an excellent graphic slide set (in both PowerPoint
and Adobe Acrobat formats) explaining Microsoft's suggested
workaround, as well as Ilfak Guilfanov's 'temporary' patch,
in detail -- as well as explaining why this issue is so
important.

 http://isc.sans.org/diary.php?storyid=1012

- ferg


-- "Pierre Vandevenne" <pierre () datarescue com> wrote:

Good Afternoon,

Tuesday, January 3, 2006, 9:28:40 AM, you wrote:

GE> The "patch" by Ilfak Guilfanov works, but by disabling a DLL in Windows.

I wouldn't say it does that. If you really want to simplify it in the
extreme, it hides the vulnerable function. The patch was, imho done
precisely to avoid disabling the dll, and because disabling the dll
wasn't necessarily successful in all cases.

-- 
Best regards,
Pierre                            mailto:pierre () datarescue com
  

--
"Fergie", a.k.a. Paul Ferguson
 Engineering Architecture for the Internet
 fergdawg () netzero net or fergdawg () sbcglobal net
 ferg's tech blog: http://fergdawg.blogspot.com/


_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.