Search:  

 
theme to black backgroundlet page decide theme
HomeFind ServiceReviewsISP NewsFAQsForumsToolsDatabaseAbout 
 
   All ForumsHot TopicsGallery






how-to block ads


 
Forums » Up and Running » Security » Security » Windows MetaFiles still vulnerable
Share Topic:
RSS topic:
toggle:
flat / full
normal / watch
Posting:
Links: ·Hijack This logs? ·Panda Free Tools ·Vundo Removal
Outpost not blocking traffic on Windows shutdown »
« JaimeSmile Trojan  
inTulsa
Premium
join:2002-02-24

Re: Windows MetaFiles still vulnerable

said by justsomebodynew :

Some people just do not get it.

This is not a bug in windows. This WMF feature being exploited is included in all versions of Windows. It is a design decision by Microsoft that allows WMF files to execute arbitrary code.
Nope. The SETABORTPROC was designed and intended for 16-Bit Windows. It's a deprecated piece of garbage that isn't supposed to be used any longer. But now we know it's still there, even Win 2003, in all of its former glory.

said by »msdn.microsoft.com/library/defau···0d6b.asp :
The following printer escapes are obsolete. They are provided only for compatibility with 16-bit versions of Windows.
That's the section where you'll find the SETABORTPROC vector.

If the "design decision" by Microsoft was to keep 16-bit security issues compatible in all its current and future versions, then we are indeed doomed. I prefer to think it might be a "mistaken oversight" instead of a "design decision".
permalink · 2006-01-02 00:31:09 · Print ·
(topic locked)
Forums » Up and Running » Security » SecurityOutpost not blocking traffic on Windows shutdown »
« JaimeSmile Trojan  

Thursday, 26-Nov 18:10:58 Terms of Use | Privacy Policy | Hosting by www.nac.net - DSL,Hosting & Co-lo | feedback | contact
over 10 years online! © 1999-2009 dslreports.com.
page compression OFF
Most commented news this week
· [109] New AT&T Ad Campaign Hits Back At Verizon
· [106] Time Warner Cable Fires Broadside At Broadcasters
· [95] Apple Joins AT&T Verizon Snark Fest
· [87] New Bill Takes Aim At Higher Verizon ETFs
· [69] TiVo Sees Record Customer Losses
· [61] In-Flight Internet Headed For Bumpy Landing?
· [42] Thanksgiving Open Thread
· [37] ICANN Slams DNS Redirection
· [34] Senators Want ACTA Made Public
· [34] Despite Billions In USF Fees, U.S. Libraries Lack Bandwidth
Most people now reading
· I'll Just Unplug That... [No, I Will Not Fix Your #@$!! Computer]
· Connecting to Google Voice Via SIP [VOIP Tech Chat]
· 3.x Feral Druid - Bear Tanking Guide [World of Warcraft]
· SSD [Computer Hardware Discussion/Reviews]
· So we need a legitimate reason to use a lot of bandwidth? [TekSavvy]
· HOW-TO: QoS and Tomato (fixes "choppy voice") [MagicJack]
· Newegg Black Friday Sale started [Users Find Hot Deals]
· Slow speeds in the evenings [TekSavvy]
· Rogers Rocket Stick [Rogers]
· persistent connection to qw-in-f113.1e100.net on boot [Security]