Home page logo
/

fulldisclosure logo Full Disclosure mailing list archives

MS04-032 Exploit for Microsoft Windows Metafile (.emf) Heap Overflow
From: Stephen Jimson <alf1num3rik () yahoo com>
Date: Wed, 20 Oct 2004 11:26:36 -0700 (PDT)

Microsoft Windows Metafile (.emf) Heap Overflow
Exploit (MS04-032)

http://www.k-otik.com/exploits/20041020.HOD-ms04032-emf-expl2.c.php

 * The vulnerability will be triggered by either
viewing a malicious 
 * file or by navigating to a directory, which
contains a malicious 
 * file and displays it as a thumbnail. 
 * 
 * Graphics Rendering Engine Vulnerability -
CAN-2004-0209 
 *
-------------------------------------------------------------------

 * Tested on: 
 *    - Internet Explorer 6.0 (SP1) (iexplore.exe) 
 *    - Explorer (explorer.exe) 
 *    - Windows XP SP1 




                
__________________________________
Do you Yahoo!?
Yahoo! Mail Address AutoComplete - You start. We finish.
http://promotions.yahoo.com/new_mail 

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html


  By Date           By Thread  

Current thread:
  • MS04-032 Exploit for Microsoft Windows Metafile (.emf) Heap Overflow Stephen Jimson (Oct 20)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]