Bugtraq: Re: [funsec] WMF round-up, updates and de-mystification

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq mailing list archives

Re: [funsec] WMF round-up, updates and de-mystification

From: Pierre Vandevenne <pierre () datarescue com>
Date: Tue, 3 Jan 2006 12:47:49 +0100

Good Afternoon,

Tuesday, January 3, 2006, 9:28:40 AM, you wrote:

GE> The "patch" by Ilfak Guilfanov works, but by disabling a DLL in Windows.

I wouldn't say it does that. If you really want to simplify it in the
extreme, it hides the vulnerable function. The patch was, imho done
precisely to avoid disabling the dll, and because disabling the dll
wasn't necessarily successful in all cases.

-- 
Best regards,
Pierre                            mailto:pierre () datarescue com

By Date By Thread

Current thread:

WMF round-up, updates and de-mystification Gadi Evron (Jan 03)
- Re: [Full-disclosure] WMF round-up, updates and de-mystification Nancy Kramer (Jan 03)
- Re: [Full-disclosure] WMF round-up, updates and de-mystification InfoSecBOFH (Jan 03)
  - RE: [Full-disclosure] WMF round-up, updates and de-mystification Larry Seltzer (Jan 03)
- Re: [funsec] WMF round-up, updates and de-mystification Pierre Vandevenne (Jan 03)
  - Re: WMF round-up, updates and de-mystification Gadi Evron (Jan 03)
  - RE: [funsec] WMF round-up, updates and de-mystification Larry Seltzer (Jan 03)
    - Re[2]: [funsec] WMF round-up, updates and de-mystification Pierre Vandevenne (Jan 04)
- Re: WMF round-up, updates and de-mystification Adam Shostack (Jan 04)
- <Possible follow-ups>
- RE: WMF round-up, updates and de-mystification Krpata, Tyler (Jan 04)