Vulnerability Development mailing list archives
lanma256.bmp/lanmannt.bmp security risk?
From: Mike.Blomgren () LS SE (Mike Blomgren)
Date: Wed, 24 Nov 1999 11:56:10 +0100
Having followed the thread on rtf exploits, I wonderd if there might be any other service which could be vulnerable under NT. One thing that struck me, is the .bmp that is displayed when Windows NT 4 boots (the one which says "Windows NT Workstation/Server" and is displayed under the logon box). What would happen if it is malformed, and NT is unable to display it? Buffer overflow - with arbitrary code execution? BSOD? My knowledge of exploits stretches no further than this. However, I can just imagine the implications, should it be a security risk. I haven't seen any posts or found any other information regarding this - so maybe it's a non-issue. Or maybe not... ~Mike
Current thread:
- icq accounts Ömer Özta (Nov 20)
- <Possible follow-ups>
- Re: icq accounts Zimmerman, Eric - CIS (Nov 22)
- Re: icq accounts Sven E. van 't Veer (Nov 22)
- Re: icq accounts Seth R Arnold (Nov 22)
- Re: icq accounts Arturo Busleiman (Nov 22)
- lanma256.bmp/lanmannt.bmp security risk? Mike Blomgren (Nov 24)
- Re: lanma256.bmp/lanmannt.bmp security risk? Marc Esipovich (Nov 24)
- SSH exploit Gerardo Richarte (Nov 24)
- Re: icq accounts Sven E. van 't Veer (Nov 22)