[33557] in bugtraq
RE: Round One: "DLL Proxy" Attack Easily Hijacks SSL from Internet Explorer
daemon@ATHENA.MIT.EDU (Ward Taylor)
Tue Feb 10 03:49:46 2004
From: "Ward Taylor" <rfdhomer@windyplains.com>
To: <bugtraq@securityfocus.com>
Date: Mon, 9 Feb 2004 13:31:25 -0600
Message-ID: <BJEIIGDJCBPHLGHHKGJFCECLCPAA.rfdhomer@windyplains.com>
MIME-Version: 1.0
Content-Type: text/plain;
charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
In-Reply-To: <DHELIJMHOLKLHKFHGGGLEECLCAAA.disclosure@ossecurity.ca>
Hi:
There is a win2k registry setting which allows the default .dll search order
to be changed.
Key:
HKLM\SYSTEM\CurrentControlSet\Control\SessionManager
Value Name:
SafeDllSearchMode
Data:
0x1
Cheers
