Comments on: WMF exploit http://DjLizard.net/2005/12/28/112/ Aw dawg, this is just my whateva-whateva site. Wed, 05 Oct 2011 15:12:05 +0000 hourly 1 http://wordpress.org/?v=3.2.1 By: fred http://DjLizard.net/2005/12/28/112/comment-page-1/#comment-275 fred Thu, 12 Jan 2006 16:43:26 +0000 http://DjLizard.net/2005/12/28/112#comment-275 One week after issuing an emergency patch for a vulnerability in Windows Meta File image processing that opened the door for arbitrary code execution, a new problem has been discovered in the format. But Microsoft has downplayed the concerns, saying the bug only causes "performance issues." According to a posting to the Bugtraq mailing list, "Windows WMF graphics rendering engine is affected by multiple memory corruption vulnerabilities." The problems involve the ExtCreateRegion and ExtEscape functions. See here: <a href="http://msgs.securepoint.com/cgi-bin/get/bugtraq0601/90.html" rel="nofollow"> One week after issuing an emergency patch for a vulnerability in Windows Meta File image processing that opened the door for arbitrary code execution, a new problem has been discovered in the format. But Microsoft has downplayed the concerns, saying the bug only causes "performance issues."

According to a posting to the Bugtraq mailing list, "Windows WMF graphics rendering engine is affected by multiple memory corruption vulnerabilities." The problems involve the ExtCreateRegion and ExtEscape functions.

See here:

]]> By: Fred http://DjLizard.net/2005/12/28/112/comment-page-1/#comment-269 Fred Fri, 06 Jan 2006 11:35:04 +0000 http://DjLizard.net/2005/12/28/112#comment-269 Microsoft issued a patch for the WMF exploit. Microsoft issued a patch for the WMF exploit.

]]>