funsec mailing list archives

exploiting MS08-021

From: "Larry Seltzer" <larry () larryseltzer com>
Date: Mon, 14 Apr 2008 17:33:40 -0400

There's exploit code out (http://www.milw0rm.com/exploits/5442) for
MS08-021
(http://www.microsoft.com/technet/security/Bulletin/MS08-021.mspx) which
describes GDI buffer overflows in the loading of EMF and WMF files.

 

There were other big problems in years past in the loading of these
files. Can anyone recall if the defaults for IE were changed with
respect to loading these files, perhaps from an IFRAME?

 

Thanks.

 

Larry Seltzer
eWEEK.com Security Center Editor
http://security.eweek.com/
http://blogs.pcmag.com/securitywatch/
Contributing Editor, PC Magazine
larry.seltzer () ziffdavisenterprise com

_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

Current thread:

exploiting MS08-021 Larry Seltzer (Apr 14)
- Re: exploiting MS08-021 Richard M. Smith (Apr 14)
  - Re: exploiting MS08-021 Larry Seltzer (Apr 14)
    - Re: exploiting MS08-021 Eric Sites (Apr 14)
  - Re: exploiting MS08-021 Florian Weimer (Apr 15)
- <Possible follow-ups>
- Re: exploiting MS08-021 Larry Seltzer (Apr 14)
- Re: exploiting MS08-021 Paul Ferguson (Apr 14)
- Re: exploiting MS08-021 RandallMan (Apr 14)