[25476] in bugtraq
Re: MS02-023 does not patch actual issue!
daemon@ATHENA.MIT.EDU (Tom Gilder)
Thu May 16 18:03:30 2002
Date: Thu, 16 May 2002 18:56:33 +0100
From: Tom Gilder <tom@tom.me.uk>
Reply-To: Tom Gilder <tom@tom.me.uk>
Message-ID: <15068010890.20020516185633@tom.me.uk>
To: ".-=D3FC0N/=-." <larry@the-pentagon.com>
Cc: "NTBugtraq" <NTBUGTRAQ@LISTSERV.NTBUGTRAQ.COM>,
"Bugtraq" <bugtraq@securityfocus.com>
In-Reply-To: <5.1.0.14.2.20020516104332.00b34518@the-pentagon.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
On Thursday, May 16, 2002, 4:46:18 PM, you wrote:
> I was unable to run the demonstration code on
> http://sec.greymagic.com/adv/gm001-ax/.
> I get the following error:
> "An error has occurred in this dialog."
> ...
> I am running Windows XP Professional 32bit with the latest patches.
GreyMagic software stated that:
> As a result of that incomplete "patch" IE5 and IE5.5 are still very much
> vulnerable to this attack in other resources. For a demonstration see
> http://sec.greymagic.com/adv/gm001-ax/.
If you have Windows XP, you will have IE6.
--
Tom Gilder
tom@tom.me.uk
