Bugtraq: RE: Did MS pull an Ilfak? (MS patch bindiff results)

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq mailing list archives

RE: Did MS pull an Ilfak? (MS patch bindiff results)

From: "Greg Wroblewski" <Greg.Wroblewski () microsoft com>
Date: Tue, 10 Jan 2006 13:39:28 -0800

The only attack vector we know about for Win9x, ME platforms is through
printing. I'm afraid that "fixing" that would break some functionality.

Greg
------------
This post is provided as is and confers no rights or whatever.

-----Original Message-----
From: Joe Polk [mailto:listuser.jav () gmail com] 
Sent: Tuesday, January 10, 2006 6:21 AM
To: Brett Glass
Cc: bugtraq () securityfocus com
Subject: Re: Did MS pull an Ilfak? (MS patch bindiff results)

Brett Glass wrote:

Question: Is Ilfak's patch still needed for Windows 95, 98, SE and ME
systems, for which Microsoft is refusing to provide a patch? To what
extent are these systems vulnerable if not patched?

--Brett Glass

Actually, Ilfak never tested his patch on a Win 9x machine. Steve 
Gibson, however, plans to write a
patch for 95, 98, and ME if Microsoft doesn't.

JP

By Date By Thread

Current thread:

Did MS pull an Ilfak? (MS patch bindiff results) Gadi Evron (Jan 06)
- Re: Did MS pull an Ilfak? (MS patch bindiff results) Brett Glass (Jan 09)
  - Re: Did MS pull an Ilfak? (MS patch bindiff results) Joe Polk (Jan 10)
    - Re: Did MS pull an Ilfak? (MS patch bindiff results) Denis Jedig (Jan 11)
- <Possible follow-ups>
- RE: Did MS pull an Ilfak? (MS patch bindiff results) Greg Wroblewski (Jan 11)