[Dshield] (no subject)

Hernandez, Moses MHernandez3 at mercymiami.org
Mon Jan 9 21:40:45 GMT 2006


Anyone worried by this? After my experience reverse engineering and repairing a machine with really bad spyware caused by WMF (story on my blog soon: mhernandez.blogspot.com) I am really worried.

---snip---

Published: 2006-01-09,
Last Updated: 2006-01-09 18:27:08 UTC by William Salusky (Version: 1) 

We had hoped the chapter on WMF exploits had finally been closed, pending the patching of countless millions of vulnerable workstations of course.  However, today we were forwarded a Bugtraq disclosure of two additional functions vulnerable to memory corruption attack within the Microsoft graphics rendering engine.  The flaw reportedly affects the 'ExtCreateRegion' and 'ExtEscape' functions and while there has been no current proof of concept exploit/DoS code publicly released we will be watching this issue closely.

reference: http://www.securityfocus.com/bid/16167  (Sorry, you have to cut/paste).

http://isc.sans.org/diary.php?storyid=1031

 
**********************************************************************************************
IMPORTANT: The contents of this email and any attachments are confidential. They are intended for the 
named recipient(s) only.
If you have received this email in error, please notify the system manager or the sender immediately and do 
not disclose the contents to anyone or make copies thereof.
*** Mercy Hospital has scanned this email for viruses, vandals, and malicious content. ***
**********************************************************************************************




More information about the list mailing list