-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
not your fault todd, they are too gay at cert
http://www.us-cert.gov/cas/techalerts/TA05-362A.html
huhu...
Todd Towles wrote:
Peter wrote:
Perhaps you should read about it on Microsoft's site.
It's not a buffer overflow. WMF files since at least Windows
3.0 days have been allowed to carry executable code in the
form of their own SetAbortProc handler. This is perfectly
legitimate, though the design is a poor one. The only thing
that has changed is the code that is being executed.
You are correct, that was my oversight in typing (minus the thinking).
No bufferoverflow ;)
-Todd
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (MingW32)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=dLUb
-----END PGP SIGNATURE-----
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
