[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <1846049593.20060103124749@datarescue.com>
Date: Tue, 3 Jan 2006 12:47:49 +0100
From: Pierre Vandevenne <pierre@...arescue.com>
To: Gadi Evron <ge@...uxbox.org>
Cc: bugtraq@...urityfocus.com, "FunSec [List]" <funsec@...uxbox.org>
Subject: Re: [funsec] WMF round-up, updates and de-mystification
Good Afternoon,
Tuesday, January 3, 2006, 9:28:40 AM, you wrote:
GE> The "patch" by Ilfak Guilfanov works, but by disabling a DLL in Windows.
I wouldn't say it does that. If you really want to simplify it in the
extreme, it hides the vulnerable function. The patch was, imho done
precisely to avoid disabling the dll, and because disabling the dll
wasn't necessarily successful in all cases.
--
Best regards,
Pierre mailto:pierre@...arescue.com
Powered by blists - more mailing lists