[35720] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

RE: Unchecked buffer in mstask.dll

daemon@ATHENA.MIT.EDU (Paul Szabo)
Thu Jul 15 15:42:25 2004

Date: Thu, 15 Jul 2004 09:50:17 +1000 (EST)
From: psz@maths.usyd.edu.au (Paul Szabo)
Message-Id: <200407142350.i6ENoHJ85368@milan.maths.usyd.edu.au>
To: bugtraq@securityfocus.com, full-disclosure@lists.netsys.com,
        tlarholm@pivx.com
Cc: brett.moore@security-assessment.com

Thor wrote about IconHandler starting mstask. Are there any other dangerous
IconHandler entries: is there a way we can reassure ourselves that the
others are safe?

Being curious, on Win2k, I copied cmd.exe (from winnt\system32) as xyz.pif;
then (right-click) Properties, Program crashes explorer. Is this related to
IconHandler, and is it exploitable?

Cheers,

Paul Szabo - psz@maths.usyd.edu.au  http://www.maths.usyd.edu.au:8000/u/psz/
School of Mathematics and Statistics  University of Sydney   2006  Australia


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[35720] in bugtraq

RE: Unchecked buffer in mstask.dll

daemon@ATHENA.MIT.EDU (Paul Szabo)Thu Jul 15 15:42:25 2004

daemon@ATHENA.MIT.EDU (Paul Szabo)
Thu Jul 15 15:42:25 2004