Home page logo
/

fulldisclosure logo Full Disclosure mailing list archives

Re: Just out - KB839645 - wonder what this fixes?
From: mnv () alumni princeton edu
Date: Tue, 13 Jul 2004 12:51:14 -0700 (PDT)

Days of mindnumbing research revealed:
http://www.microsoft.com/technet/security/bulletin/ms04-023.mspx

Vulnerability in HTML Help Could Allow Code Execution
(840315)

A security issue has been identified that could allow
an attacker, with some user interaction, to run
applications on a system. You can help protect your
computer by installing this update from Microsoft.

On Tue, 13 Jul 2004 18:05:31 +0100, "Randal, Phil"
wrote:


From the install log on an XP box:

Copied file:  C:\WINDOWS\System32\fldrclnr.dll
Copied file:  C:\WINDOWS\System32\shell32.dll
Copied file:  C:\WINDOWS\System32\shlwapi.dll
Copied file:  C:\WINDOWS\System32\sxs.dll
Copied file:  C:\WINDOWS\System32\DllCache\shlwapi.dll
Copied file:  C:\WINDOWS\System32\xpsp2res.dll
Copied file: 
C:\WINDOWS\System32\DllCache\xpsp2res.dll

Cheers,

Phil
----
Phil Randal
Network Engineer
Herefordshire Council
Hereford, UK 

_______________________________________________
Full-Disclosure - We believe in it.
Charter:
http://lists.netsys.com/full-disclosure-charter.html

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault