dvd536as Mr. Pink as they comePremium
Working WMF test site Are there any working[safe] WMF test sites that people can test the patches with? the GRC one that linked to has the patch but the blog/test isnt there.
You can never be too rich, too thin or have too much Bandwidth
Yes, I have created the most current version of test files for this exploit 1.17 ("Which was changed Today") from 1.16 both on-line and in zip files, also I have created test files from the last 2 prior releases ("1.16 and 1.14") as well in zip files, more information here:
»Windows MetaFiles still vulnerable
Black, Grey and White Hats Unite here -> »testing.OnlyTheRightAnswers.com
reply to dvd536
I downloaded a wmf file that was posted for testing a few days ago - it's the one that runs calc.exe.
I've put it on my site in a page using iframe
iframe src="test.wmf" style=""> iframe>
I've included this as it displays a different result to all the previous peoples tests i've done over the past few days.
When i close the page i get roundabout a 100mS flash of this -
I had to save the page to disk to actually be able to view it properly in able to take the screeny. The interesting thing about this test is the box in the upper left hand side. What was supposed to be in there that my system wouldn't allow me to see ?
AntiVir still kicked in as above, when opening the saved page.
I Only Know What I Know, But I'm Learning all The Time - Stay Safe - Spanner intheWorks/SpannerITWks
jbobReach Out and Touch SomeonePremium
Little Rock, AR
reply to dvd536 I tried it and first got the Open dialog in Fx which defaulted to Open wmffile. I chose to save to disk and then got the second error gui box "could not be saved....". After that then my AV popped up it's thing. I also get that box in the upper left hand screen.
reply to dvd536 All good here, KAV gets it before i get chance to open it.
reply to SpannerITWks
said by SpannerITWks:That is the iframe.
The interesting thing about this test is the box in the upper left hand side. What was supposed to be in there that my system wouldn't allow me to see ?
On the hacked sites the iframe tag includes "display=none"
I let it display so you can see. Since there is nothing legitimate to display, the frame is blank, or displays "page not found" or something like that.
edit: clarify iframe
Thanx 4 the clarification.
Good 2 go !