[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] Re: [ GLSA 200601-09 ] Wine:Windows MetafileSETABORTPROC vulnerability

To: Peter Ferrie <pferrie@xxxxxxxxxxxx>
Subject: Re: [Full-disclosure] Re: [ GLSA 200601-09 ] Wine:Windows MetafileSETABORTPROC vulnerability
From: bkfsec <bkfsec@xxxxxxxxxxxxxxxx>
Date: Fri, 13 Jan 2006 18:22:23 -0500

Peter Ferrie wrote:

bkfsec:

The way I read what he's saying there, he's saying that you enter
malformed input and that malformed input pushes the executable code into
position to be executed...


There is no need for malformed input, though.
The description isn't great, since upon return from the function, Windows
will resume parsing the records in the usual way.

8^) p.

I agree - I was focusing on how Gibson described it and hisjustification of it being a planted vulnerability. *shrug*

            -bkfsec


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

References:
- RE: [Full-disclosure] Re: [ GLSA 200601-09 ] Wine: Windows MetafileSETABORTPROC vulnerability
  - From: Todd Towles
- Re: [Full-disclosure] Re: [ GLSA 200601-09 ] Wine: Windows MetafileSETABORTPROC vulnerability
  - From: bkfsec
- RE: [Full-disclosure] Re: [ GLSA 200601-09 ] Wine:Windows MetafileSETABORTPROC vulnerability
  - From: Peter Ferrie

Prev by Date: RE: [Full-disclosure] Steve Gibson smokes crack?
Next by Date: Re: [Full-disclosure] Steve Gibson smokes crack?
Previous by thread: RE: [Full-disclosure] Re: [ GLSA 200601-09 ] Wine:Windows MetafileSETABORTPROC vulnerability
Next by thread: [Full-disclosure] SCOSA-2006.7.1 OpenServer 5.0.7 OpenServer 6.0.0 : REVISED Lynx Multiple Vulnerabilities
Index(es):
- Date
- Thread