Search: Home Bugtraq Vulnerabilities Mailing Lists Jobs Tools Beta Programs
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
 
RE: Windows Installer msiexec GUID Buffer Overflow Jun 03 2008 04:14PM
Thor (Hammer of God) (thor hammerofgod com)
So, the "possible code execution" would run code in the context of the user who was running msiexec.exe? If you are going to get them to run code to exploit the "vulnerability," wouldn't it be more efficient to just get them to run whatever resultant code you were trying to run in the first place?
...

[ more ]  




 

Privacy Statement
Copyright 2009, SecurityFocus