Re: Windows MetaFiles still vulnerable - dslreports.com

republican-creole			Search:
	login · register

	All Forums		Hot Topics		Gallery

how-to block ads

Forums » Up and Running » Security » Security » Windows MetaFiles still vulnerable


Search Topic:	Share Topic:	RSS topic:	toggle: flat / full normal / watch	Posting:

Links: ·Hijack This logs? ·Panda Free Tools ·Vundo Removal

Outpost not blocking traffic on Windows shutdown »
« JaimeSmile Trojan

Author	All Replies
redxii too big to fail Premium,Mod join:2001-02-26 Texas Host: /dev/null Broadband Tweaks Suddenlink ISDN Fiber Optic 1 edit	reply to dp Re: Windows MetaFiles still vulnerable Kinda funny. I found it out on my own then while I was typing it up other people are in the know at the same time. I did not go to unionseek or heard of it until other people were posting WMF file code execution Except i'm wondering what the hell happened. They released a patch fixing metafile code execution, and two months later we have metafile code execution even with the said patch. Except this time it is actually in the wild. "The issue may be exploited remotely or by a local attacker. Any code execution that occurs will be with SYSTEM privileges due to the nature of the affected engine." Atleast in my testing, this does not appear to be the case. I think they are confusing the fact that most people run as admin, and once the code is executed it creates services that are run as SYSTEM. It for sure died in a restricted account.
	to forum · permalink · · 2005-12-28 06:19:04 · (locked)

Thread is

Topic: Follow · Sitemark · Mark Unread

Forums » Up and Running » Security » Security	Outpost not blocking traffic on Windows shutdown » « JaimeSmile Trojan


Saturday, 28-Nov 05:46:56	Terms of Use \| Privacy Policy \| Hosting by www.nac.net - DSL,Hosting & Co-lo \| feedback \| contact over 10 years online! © 1999-2009 dslreports.com. page compression OFF

Most commented news this week
· [121] Time Warner Cable Fires Broadside At Broadcasters
· [112] New AT&T Ad Campaign Hits Back At Verizon
· [96] Apple Joins AT&T Verizon Snark Fest
· [87] New Bill Takes Aim At Higher Verizon ETFs
· [71] TiVo Sees Record Customer Losses
· [69] In-Flight Internet Headed For Bumpy Landing?
· [66] Verizon CEO: Hulu Will Be Dead Soon
· [62] Thanksgiving Open Thread
· [50] Weekend Open Thread
· [40] EFF Wages War On Fine Print

Most people now reading
· Windows 7 boot manager editing questions [Microsoft Help]
· 3.x Feral Druid - Bear Tanking Guide [World of Warcraft]
· Is Gear Score now the new requirement to get pug invite? [World of Warcraft]
· [Newsgroups] Newzleech down? [Filesharing Software]
· Backstab vs screws (not which to use) [Home Repair & Improvement]
· What is the spell hit cap for a lvl 80 full arcane spec mage [World of Warcraft]
· [Spam] Kanicn [Spam, Scam and Phishbusters]
· DIR-655 New Beta 1.32b09 [D-Link]
· [ Classes] 3.2.2 Rogue [World of Warcraft]
· HOW-TO: QoS and Tomato (fixes "choppy voice") [MagicJack]