Bugtraq mailing list archives
IE4.0 patch
From: trott () REMUS RUTGERS EDU (Richard Trott)
Date: Thu, 13 Nov 1997 14:38:30 -0500
Microsoft released a patch for the recently-reported (via l0pht--see http://l0pht.com/advisories.html if you missed it on bugtraq) buffer overflow in Win95 with regard to res:// type URLs. Does anyone know if the patch (http://www.microsoft.com/ie/security/?/ie/security/buffer.htm to get it) actually fixes Win95, or if it's just an IE patch? The l0pht advisory indicated that other apps were vulnerable because the problem was with Win95, not IE. (Easy, if not-so-thorough, way to test: use Outlook Express (or Windows Explorer) to view a bogus res:// URL of longer than 256 characters and watch it crash Outlook Express (or Windows Explorer). Install patch above. Try again. Does it still crash? I don't have a Win95 machine at my disposal to test this with...) Richard Trott trott () remus rutgers edu
Current thread:
- Re: Cisco IOS password encryption facts, (continued)
- Re: Cisco IOS password encryption facts ice9 (Nov 11)
- Re: Cisco IOS password encryption facts J. Sean Connell (Nov 11)
- Re: Cisco IOS password encryption facts Michael Degerman (Nov 13)
- mode of the i586 F0 bug VaX#n8 (Nov 12)
- Re: mode of the i586 F0 bug Alan Cox (Nov 12)
- Linux F00F Patch Aleph One (Nov 12)
- Re: Safe /tmp cleanup Randal Schwartz (Nov 12)
- Re: Safe /tmp cleanup dsiebert () ICAEN UIOWA EDU (Nov 13)
- another buffer overrun in sperl5.003 Pavel Kankovsky (Nov 13)
- Re: Safe /tmp cleanup Valdis Kletnieks (Nov 13)
- IE4.0 patch Richard Trott (Nov 13)
- X Security problem (?) Carlo Wood (Nov 13)
- Re: X Security problem (?) Matthias Buelow (Nov 14)
- Re: X Security problem (?) Scott Moseman (Nov 14)
- digital unix 4.0 hole John McDonald (Nov 14)
- What to do when you forget your cisco LD password... Dustin Sallings (Nov 13)
- Re: What to do when you forget your cisco LD password... John Bashinski (Nov 14)
- Re: Safe /tmp cleanup Erik Troan (Nov 13)
- Linux IP fragment overlap bug G P R (Nov 13)
- Re: Linux IP fragment overlap bug Alan Cox (Nov 14)
- Re: Linux IP fragment overlap bug Vadim Kolontsov (Nov 14)