[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: Re[2]: [Full-disclosure] test this

To: "Peter Ferrie" <pferrie@xxxxxxxxxxxx>, <full-disclosure@xxxxxxxxxxxxxxxxx>
Subject: RE: Re[2]: [Full-disclosure] test this
From: "Todd Towles" <toddtowles@xxxxxxxxxxxxxxx>
Date: Thu, 29 Dec 2005 13:15:27 -0600

 
Peter wrote:
> Perhaps you should read about it on Microsoft's site.
> It's not a buffer overflow.  WMF files since at least Windows 
> 3.0 days have been allowed to carry executable code in the 
> form of their own SetAbortProc handler.  This is perfectly 
> legitimate, though the design is a poor one.  The only thing 
> that has changed is the code that is being executed.

You are correct, that was my oversight in typing (minus the thinking).
No bufferoverflow ;)

-Todd
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Follow-Ups:
- Re: [Full-disclosure] test this
  - From: ad@xxxxxxxxxxxxxxxx

Prev by Date: Re: [Full-disclosure] complaints about the governemnt spying!
Next by Date: Re: [Full-disclosure] Re: [MailServer Notification]To recipient:Message matched eManager setting and action was taken.
Previous by thread: RE: Re[2]: [Full-disclosure] test this
Next by thread: Re: [Full-disclosure] test this
Index(es):
- Date
- Thread