[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <20030721122620.3527.qmail@web15305.mail.bjs.yahoo.com>
From: liudieyuinchina at yahoo.com.cn (Liu Die Yu)
Subject: "windows update activex"
if someone got something like that, i can get the
digest of that EXE. and your EXE can pass WinTrust
check.
THEN:
cross-site scripting
= update windows box with buggy software automatically
= remote system compromise
and all we use is normal "windows update" features.
:-)
great prosperity.
die
--- Georgi Guninski <guninski@...inski.com> 的正文:>
Liu Die Yu wrote:
> > BUT it's hard for the attacker to execute his EXE.
> > i've traced into the module("IUENGINE.TEXT").
> >
>
> Has someone tried downgrading windoze by installing
> old signed stuff (probably a
> very old m$ patch as exe will do, or just some old
> signed installer from m$)?
> After downgrading, old bugs start working.
>
> georgi
>
>
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter:
http://lists.netsys.com/full-disclosure-charter.html
_________________________________________________________
Do You Yahoo!?
国内电邮用户反垃圾调查拉开帷幕
http://cn.rd.yahoo.com/mail_cn/tag/?http://cn.tech.yahoo.com/zhuanti/laji/index.html
Powered by blists - more mailing lists