[41921] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: [funsec] WMF round-up, updates and de-mystification

daemon@ATHENA.MIT.EDU (Pierre Vandevenne)
Tue Jan 3 17:24:15 2006

Date: Tue, 3 Jan 2006 12:47:49 +0100
From: Pierre Vandevenne <pierre@datarescue.com>
Reply-To: Pierre Vandevenne <pierre@datarescue.com>
Message-ID: <1846049593.20060103124749@datarescue.com>
To: Gadi Evron <ge@linuxbox.org>
Cc: bugtraq@securityfocus.com, "FunSec [List]" <funsec@linuxbox.org>
In-Reply-To: <43BA35B8.9040404@linuxbox.org>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit

Good Afternoon,

Tuesday, January 3, 2006, 9:28:40 AM, you wrote:

GE> The "patch" by Ilfak Guilfanov works, but by disabling a DLL in Windows.

I wouldn't say it does that. If you really want to simplify it in the
extreme, it hides the vulnerable function. The patch was, imho done
precisely to avoid disabling the dll, and because disabling the dll
wasn't necessarily successful in all cases.

-- 
Best regards,
Pierre                            mailto:pierre@datarescue.com


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[41921] in bugtraq

Re: [funsec] WMF round-up, updates and de-mystification

daemon@ATHENA.MIT.EDU (Pierre Vandevenne)Tue Jan 3 17:24:15 2006

daemon@ATHENA.MIT.EDU (Pierre Vandevenne)
Tue Jan 3 17:24:15 2006