lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite for Android: free password hash cracker in your pocket
[<prev] [next>] [day] [month] [year] [list]
Message-ID: <20040713125115.11282.h030.c007.wm@mail.alumni.princeton.edu.criticalpath.net>
From: mnv at alumni.princeton.edu (mnv@...mni.princeton.edu)
Subject: Just out - KB839645 - wonder what this fixes?

Days of mindnumbing research revealed:
http://www.microsoft.com/technet/security/bulletin/ms04-023.mspx

Vulnerability in HTML Help Could Allow Code Execution
(840315)

A security issue has been identified that could allow
an attacker, with some user interaction, to run
applications on a system. You can help protect your
computer by installing this update from Microsoft.

On Tue, 13 Jul 2004 18:05:31 +0100, "Randal, Phil"
wrote:

> 
> From the install log on an XP box:
> 
> Copied file:  C:\WINDOWS\System32\fldrclnr.dll
> Copied file:  C:\WINDOWS\System32\shell32.dll
> Copied file:  C:\WINDOWS\System32\shlwapi.dll
> Copied file:  C:\WINDOWS\System32\sxs.dll
> Copied file:  C:\WINDOWS\System32\DllCache\shlwapi.dll
> Copied file:  C:\WINDOWS\System32\xpsp2res.dll
> Copied file: 
C:\WINDOWS\System32\DllCache\xpsp2res.dll
> 
> Cheers,
> 
> Phil
> ----
> Phil Randal
> Network Engineer
> Herefordshire Council
> Hereford, UK 
> 
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter:
> http://lists.netsys.com/full-disclosure-charter.html


Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ