lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Date: Wed Jan 4 22:12:25 2006 From: se_cur_ity at hotmail.com (Morning Wood) Subject: Unofficial Microsoft patches help hackers, not security > everyone knows the best official patch is firefox > umm, no firefox presents a save or open dialog box. if the user belives it to be a image he / she is intended to view, they will simply "open". thus, windows gladly passes the extention handler to WMF, game over. or, they will "save" and simply passing the mouse over the icon will trigger the exploit, again... game over
Powered by blists - more mailing lists