lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list]
From: tom.koehler at gmx.net (Tom Koehler)
Subject: The msvidctl.dll in Windows XP

Hi Richard,

>On my Windows XP laptop, I found a large number of ActiveX controls in the
>system file msvidctl.dll which are marked safe for scripting.  I've
attached a
>list of the controls in this DLL.  I'm really curious why this DLL is
installed
>on my system in the first place since the laptop doesn't have a TV tuner
and why
>these controls need to be marked safe for scripting.

>Also does anyone know if this DLL is installed by default in all/most
>Windows XP systems?
I have PC with preinstalled XP (install date 12.Dec.02) and the files are in
the 
system folder and a folder called servicepackfiles (created 18.12.02 when
the
computer was already under my care) so I assume they came with the update
I did after receiving the machine.

>My concern with this DLL, is that some number of security holes have
slipped by
>Microsoft given the large quantity of ActiveX methods and properties that
need
>to checked out here.
I'm sure there are, but I don't actively use that OS so I'm not too worried.
I have Linux and Win98SE on  two other ones and only go XP to test our
software.

cheers
tom

-- 
NEU F?R ALLE - GMX MediaCenter - f?r Fotos, Musik, Dateien...
Fotoalbum, File Sharing, MMS, Multimedia-Gru?, GMX FotoService

Jetzt kostenlos anmelden unter http://www.gmx.net

+++ GMX - die erste Adresse f?r Mail, Message, More! +++


Powered by blists - more mailing lists