| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <Pine.LNX.4.44.0601031737580.27958-100000@bugsbunny.castlecops.com> Date: Tue, 3 Jan 2006 17:39:37 -0500 (EST) From: Paul Laudanski <zx@...tlecops.com> To: Sam Munro <sam.munro@...il.com> Cc: Bill Busby <williambusby2001@...oo.com>, "Hayes, Bill" <Bill.Hayes@....com>, <davidribyrne@...oo.com>, <bugtraq@...urityfocus.com> Subject: Re: WMF Exploit On Tue, 3 Jan 2006, Sam Munro wrote: > I haven't seen this mentioned yet so I thought I would give you guys a > heads-up a very good patch has been written by Ilfak > Guilfanov<http://www.hexblog.com/2005/12/wmf_vuln.html> as > a tempory solution until ms get their act together. > > Can be downloaded here: > http://www.hexblog.com/security/files/wmffix_hexblog14.exe Ilfak's hexblog.com is down. CastleCops is hosting the downloads now and there is a hexblog forum setup which Ilfak himself is moderating: http://castlecops.com/f212-Hexblog.html The downloads, etc can be found here: http://castlecops.com/postlite143213-.html -- Paul Laudanski, Microsoft MVP Windows-Security [cal] http://events.castlecops.com [de] http://de.castlecops.com [en] http://castlecops.com [wiki] http://wiki.castlecops.com [family] http://cuddlesnkisses.com
Powered by blists - more mailing lists