Full Disclosure mailing list archives
Re: Microsoft MCWNDX.OCX ActiveX buffer overflow
From: "Steven M. Christey" <coley () mitre org>
Date: Thu, 14 Aug 2003 15:57:54 -0400 (EDT)
Matthew Murphy asked:
Has anyone actually seen this control in-the-wild? I have Visual C++ 6.0, and Visual Basic 6.0 installed here (full installs, IIRC), and a search for "*mcwndx*" on the entire hard drive (and the Visual C++ CD) turns up nothing.
It was also observed that "MCWNDX.OCX" isn't on Google either. The original advisory lists both "MCWNDX.OCX" and "MCIWNDX.OCX," the latter of which generates a number of hits on Google and is mentioned in Microsoft KB article Q173352. So, maybe the correct control name is "MCIWNDX.OCX," although Thor Larholm said that the "MCWNDX.OCX binary is digitally signed by Microsoft," so maybe there are two of them. A surprisingly large percentage of security advisories have significant typos, inconsistencies, or other mistakes like this, and few people seem to notice or at least comment on it. By the way, this is one of the many things that makes vulnerability databases expensive to maintain (assuming that correctness is a desirable feature of such databases). - Steve _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- Re: Microsoft urging users to buy Harware Firewalls, (continued)
- Re: Microsoft urging users to buy Harware Firewalls Florian Weimer (Aug 22)
- Re: Microsoft urging users to buy Harware Firewalls William Warren (Aug 22)
- Re: Microsoft urging users to buy Harware Firewalls Sven Hoexter (Aug 22)
- RE: Microsoft urging users to buy Harware Firewalls Rick Kingslan (Aug 13)
- Re: +++++SPAM+++++ RE: Microsoft urging users to buy Harware Firewalls Michael Scheidell (Aug 14)
- RE: +++++SPAM+++++ RE: Microsoft urging users to buyHarware Firewalls Simon (Aug 14)
- Re: Microsoft urging users to buy Harware Firewalls Sebastian Niehaus (Aug 14)
- Re: Microsoft urging users to buy Harware Firewalls Joey (Aug 14)
- Re: Re: Microsoft MCWNDX.OCX ActiveX buffer overflow Georgi Guninski (Aug 15)
- Re: Microsoft MCWNDX.OCX ActiveX buffer overflow Matthew Murphy (Aug 15)
- RE: Microsoft MCWNDX.OCX ActiveX buffer overflow Drew Copley (Aug 15)