antdude
A Ninja Ant
Premium,VIP
join:2001-03-25
| reply to Dude111
Re: Windows MetaFiles still vulnerable
said by Dude111  :Heh,Batman and Robin...I remember that show!!!! Nanananananananana Batman!  |
|
Dude111
An Awesome Dude
Premium
join:2003-08-04
USA | reply to redxii
Heh,Batman and Robin...I remember that show!!!! |
|
rawwhide
Zer0
Premium
join:2000-09-03
Zero
clubs:
 ·AT&T DSL Service
| reply to Dude111
Holy thread revival Batman.
--
I didnt do it ... HUH!!! |
|
Marilla
I Am My Own Arbiter
Premium
join:2002-12-06
Belpre, OH | reply to Dude111
hehe.. you're welcome. That'll teach, you; coming late to the show, and all!
 :D;):p
 |
|
Dude111
An Awesome Dude
Premium
join:2003-08-04
USA | reply to redxii
Ah man!!!! I mi$$ed that thread!!!!!
Thank you my friend  |
|
Marilla
I Am My Own Arbiter
Premium
join:2002-12-06
Belpre, OH
| reply to Dude111
said by Dude111 :Steve Gibson is saying that MICROSOFT purposely put this in Windows (I wouldnt be a bit surprised) » media.grc.com/sn/sn-022-lq.mp316Bit Stream - 39Mins Whadda ya think? What do I think? I think you didn't read a word of the forum before posting. That's what I think:
»- - > MS Metafile Backdoor !!! - -
--
I am the sole arbiter of what is important enough to spend my time on - not anyone else here, or anywhere else. You take care of yourself, and leave me to me, got it? |
|
Dude111
An Awesome Dude
Premium
join:2003-08-04
USA | reply to redxii
Steve Gibson is saying that MICROSOFT purposely put this in Windows (I wouldnt be a bit surprised)
»media.grc.com/sn/sn-022-lq.mp3
16Bit Stream - 39Mins
Whadda ya think? |
|
ZOverLord
Premium
join:2003-10-20
Minneapolis, MN
| reply to redxii
Yep,
I have spent the better part of a few hours going to shall we say NOT the Internets Finest Web Sites "For Research Purpose :P" and can say some sites are launching as many as 10 .wmf files from one page, each one has a different payload.
I do pity the folks that can become infected that have not found or tried some sort of protection method from this. :-(
--
Black, Grey and White Hats Unite here -> »testing.OnlyTheRightAnswers.com |
|
caffeinator
Coming soon to a cup near you..
Premium
join:2005-01-16
Spokane, WA
·WebBand
3 edits | reply to redxii
i've tried the latest eset patch ..seems better.
I cant expect tooo much..GDI in 98 sukz.
Sorry, not very sober atm, but the latest eset patch, it's not that bad IMO. Still bit of a mem hog, but that's 98 memory handeling for ya. The man who writes all singular patches for Nod32 peeps made this..he's good.
New patch they have is better...Beats being open to exploit.
You don't have a choice. Patch, has an un-install if ya hate it.
--
"Only two things are infinite, the universe and human stupidity, and I'm not sure about the former." - A. Einstein |
|
ZOverLord
Premium
join:2003-10-20
Minneapolis, MN
| reply to tytfhtfjh
said by tytfhtfjh :
meaning this crap exists
Any Chance you could answer this question?
»Has anyone installed the Nod WMF Patch for 98
--
Black, Grey and White Hats Unite here -> »testing.OnlyTheRightAnswers.com |
|
tytfhtfjh
@telus.net | reply to redxii
meaning this crap exists |
|
ZOverLord
Premium
join:2003-10-20
Minneapolis, MN | reply to tytfhtfjh
Meaning? |
|
tytfhtfjh
@telus.net | reply to redxii
Hmmmmm this isnt a good situation |
|
Charles770
join:2004-11-08
France
| reply to KyeU
Re: Win 98/ME patch
said by KyeU :Never heard reports of it causing any slowdown or crashes. Sorry, but it's not what I had seen.
Look here:
- SpannerITWks
»Windows MetaFiles still vulnerable :
"Well i installed the ESET patch
...
I retried a number of those WMF tests including the real Live ones. On my 98SE PC i didn't notice anything different from the past few days of testing. I got exactly the same results as before with the usual protections kicking in, and/or nothing untoward occurring. Even without my AV running and allowing the tests through my defensive apps as before there was no change."
- and then caffeinator
»Windows MetaFiles still vulnerable :
"Since I have a 98SE box
...
I tried the eset one...called a GDI patch..shoulda known..it ate a whole 1% off my starting resources. UGH. Slowed the box like mad."
So maybe, more experiences or sources?
Charles. |
|
KyeU
join:2003-12-31
Canada
| reply to EricJ1137
said by EricJ1137 :
Has anyone had success with the Win 98/ME patch from NOD32? Is it reasonably safe? So far, I've only heard good things about it.
Never heard reports of it causing any slowdown or crashes. |
|
EricJ1137
@sisna.com
|  reply to ZOverLord
Has anyone had success with the Win 98/ME patch from NOD32? Is it reasonably safe?
»www.nod32.ch/en/download/tools.php
I'm wondering if I should distribute this to my win98-using friends & family... |
|
KyeU
join:2003-12-31
Canada | reply to redxii
Re: Windows MetaFiles still vulnerable
Proxomitron filters updated yet again to match all variants (to v1.17). Get them here: »Browser Security Pack v4.56 [Proxomitron] |
|
ZOverLord
Premium
join:2003-10-20
Minneapolis, MN
| reply to SpannerITWks
said by SpannerITWks :tytfhtfjh Read back just a little up the thread, and you'll also see info + links of my posts with Pics of the ESET 98 fix install i did ! Spanner Yep, I missed your post the first time, sorry about that.
I guess others may not know that this patch is available. Have pretty much gone to the major sites and linked back here to let others know.
--
Black, Grey and White Hats Unite here -> »testing.OnlyTheRightAnswers.com |
|
SpannerITWks
Premium
join:2005-04-22
| reply to ZOverLord
tytfhtfjh
Read back just a little up the thread, and you'll also see info + links of my posts with Pics of the ESET 98 fix install i did !
Spanner
--
I Only Know What I Know, But I'm Learning all The Time - Stay Safe - Spanner intheWorks/SpannerITWks |
|
ZOverLord
Premium
join:2003-10-20
Minneapolis, MN
2 edits | reply to tytfhtfjh
said by tytfhtfjh :
I would if I could find one
Your Kidding Right? Look here:
»www.nod32.ch/en/download/tools.php
Then use my test files again
Most Current Version of Test Files ("Version 1.17")
»Windows MetaFiles still vulnerable
--
Black, Grey and White Hats Unite here -> »testing.OnlyTheRightAnswers.com |
|
