Bugtraq: Re: WMF Exploit

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq mailing list archives

Re: WMF Exploit

From: Paul Laudanski <zx () castlecops com>
Date: Tue, 3 Jan 2006 17:39:37 -0500 (EST)

On Tue, 3 Jan 2006, Sam Munro wrote:

I haven't seen this mentioned yet so I thought I would give you guys a
heads-up a very good patch has been written by Ilfak
Guilfanov<http://www.hexblog.com/2005/12/wmf_vuln.html> as
a tempory solution until ms get their act together.

Can be downloaded here:
http://www.hexblog.com/security/files/wmffix_hexblog14.exe


Ilfak's hexblog.com is down.  CastleCops is hosting the downloads now and 
there is a hexblog forum setup which Ilfak himself is moderating:

http://castlecops.com/f212-Hexblog.html

The downloads, etc can be found here:

http://castlecops.com/postlite143213-.html

-- 
Paul Laudanski, Microsoft MVP Windows-Security
[cal] http://events.castlecops.com
[de] http://de.castlecops.com
[en] http://castlecops.com
[wiki] http://wiki.castlecops.com
[family] http://cuddlesnkisses.com

By Date By Thread

Current thread:

Re: RE: WMF Exploit, (continued)
- Re: RE: WMF Exploit grasshopa (Jan 03)
  - Re: WMF Exploit Joshua (Jan 05)
- Re: WMF Exploit Frank Knobbe (Jan 03)
- RE: WMF Exploit Paul (Jan 03)
- WMF exploit Andreas Marx (Jan 04)
- Re: WMF Exploit Paul Laudanski (Jan 04)
- RE: WMF Exploit Discussion Lists (Jan 04)