Full Disclosure mailing list archives

RE: Re[2]: test this

From: "Todd Towles" <toddtowles () brookshires com>
Date: Thu, 29 Dec 2005 13:15:27 -0600

 
Peter wrote:

Perhaps you should read about it on Microsoft's site.
It's not a buffer overflow.  WMF files since at least Windows 
3.0 days have been allowed to carry executable code in the 
form of their own SetAbortProc handler.  This is perfectly 
legitimate, though the design is a poor one.  The only thing 
that has changed is the code that is being executed.


You are correct, that was my oversight in typing (minus the thinking).
No bufferoverflow ;)

-Todd
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Current thread:

RE: test this, (continued)
- RE: test this Todd Towles (Dec 28)
- RE: Re[2]: test this Todd Towles (Dec 29)
  - Re: test this ad () heapoverflow com (Dec 29)
  - Re: Re[2]: test this Valdis Shkesters (Dec 29)
  - RE: Re[2]: test this Peter Ferrie (Dec 29)
    - RE: Re[2]: test this Benjamin Franz (Dec 29)
    - Re: test this Michael Holstein (Dec 29)
- RE: Re[2]: test this Todd Towles (Dec 29)
- RE: test this Todd Towles (Dec 29)
- RE: Re[2]: test this Todd Towles (Dec 29)
- RE: Re[2]: test this Todd Towles (Dec 29)
  - Re: test this ad () heapoverflow com (Dec 29)
- RE: Re[2]: test this Todd Towles (Dec 29)