|
BugTraq
WMF round-up, updates and de-mystification Jan 03 2006 08:28AM Gadi Evron (ge linuxbox org) (4 replies) Re: WMF round-up, updates and de-mystification Jan 03 2006 10:36PM Adam Shostack (adam homeport org) Re: [funsec] WMF round-up, updates and de-mystification Jan 03 2006 11:47AM Pierre Vandevenne (pierre datarescue com) (2 replies) RE: [funsec] WMF round-up, updates and de-mystification Jan 03 2006 11:59AM Larry Seltzer (larry larryseltzer com) (1 replies) Re[2]: [funsec] WMF round-up, updates and de-mystification Jan 03 2006 01:42PM Pierre Vandevenne (pierre datarescue com) Re: [Full-disclosure] WMF round-up, updates and de-mystification Jan 03 2006 11:34AM InfoSecBOFH (infosecbofh gmail com) (1 replies) Re: [Full-disclosure] WMF round-up, updates and de-mystification Jan 03 2006 10:35AM Nancy Kramer (nekramer mindtheater net) |
|
Privacy Statement |
scnenarios and does not mitigate the entire issue. Variations still work.I
have tested and confirmed that this patch only works in specific scnenarios
and does not mitigate the entire issue. Variations still work.
Oh really? Do you have any more information on this or do you just like to
throw bricks? I have a hard time believing you're right, because it would
mean that there are variations of the attack that don't use its fundamental
mechanism.
All that said, it's clear to me that the rush to adopt this patch is
precipitous. For instance, it's largely unnecessary on Windows 9x, NT, and
2K, unless you rely on a specifically vulnerable app, like Notes.
Larry Seltzer
eWEEK.com Security Center Editor
http://security.eweek.com/
http://blog.ziffdavis.com/seltzer
Contributing Editor, PC Magazine
larryseltzer (at) ziffdavis (dot) com [email concealed]
[ reply ]