, SecurityFocus 2005-08-31
A flaw in the way that several security programs and systems utilities detect system changes could allow spyware to spread surreptitiously and have renewed worries about stealthier attack code.
Expand all |
Post comment
Please explain...
2005-08-31
Brian M. Thomas (5 replies)
Brian M. Thomas (5 replies)
Re: Please explain...
2005-08-31
Anonymous (1 replies)
Anonymous (1 replies)
All-Seeing Eye handles this trick without any problem
2005-09-07
Richard T. (1 replies)
Richard T. (1 replies)
<i>"The technique works against Microsoft's RegEdit utility, but other system utilities, such as Reg.exe and the Microsoft Configuration Editor, are not affected, the software giant stated."</i>
It would seem to me that by simply altering the reditor you could solve this issue. I also seem to recall at one time openly reading about this in the MSDN.
<i>"The technique involves using a registry key whose name is longer than 256 bytes."</i>
Wouldn't this be fix by patching whatever memory limitation was implemented at design time, I mean come on PC's now come with at least 512 mb ram now, you telling me they can't handle a filename with 256 chars?
[ reply ]
Link to this comment: http://www.securityfocus.com/comments/articles/11300/32373#32373