Bugtraq mailing list archives
Re: Round One: "DLL Proxy" Attack Easily Hijacks SSL from Internet Explorer
From: "Nexus" <nexus () patrol i-way co uk>
Date: Tue, 10 Feb 2004 16:40:17 -0000
----- Original Message ----- From: "Ward Taylor" <rfdhomer () windyplains com> To: <bugtraq () securityfocus com> Sent: Monday, February 09, 2004 7:31 PM Subject: RE: Round One: "DLL Proxy" Attack Easily Hijacks SSL from Internet Explorer
Hi: There is a win2k registry setting which allows the default .dll search
order
to be changed.
Out of curiosity, does that override the 0 byte .exe.local file trick to force the application to search the local directory for the .dll first ? http://www.jsiinc.com/subf/tip2600/rh2606.htm Cheers.
Current thread:
- Re: Round One: "DLL Proxy" Attack Easily Hijacks SSL from Internet Explorer, (continued)
- Re: Round One: "DLL Proxy" Attack Easily Hijacks SSL from Internet Explorer John D. Hardin (Feb 11)
- Re: Round One: "DLL Proxy" Attack Easily Hijacks SSL from Internet Explorer der Mouse (Feb 11)
- Re: Round One: "DLL Proxy" Attack Easily Hijacks SSL from Internet Explorer Darren Reed (Feb 12)
- Re: Round One: "DLL Proxy" Attack Easily Hijacks SSL from Internet Explorer der Mouse (Feb 12)
- Re: Round One: "DLL Proxy" Attack Easily Hijacks SSL from Internet Explorer Darren Reed (Feb 12)
- Re: Round One: "DLL Proxy" Attack Easily Hijacks SSL from Internet Explorer der Mouse (Feb 12)
- Re: Round One: "DLL Proxy" Attack Easily Hijacks SSL from Internet Explorer Glynn Clements (Feb 12)
- Re: Round One: "DLL Proxy" Attack Easily Hijacks SSL from Internet Explorer Peter Pentchev (Feb 10)
- Re: Round One: "DLL Proxy" Attack Easily Hijacks SSL from Internet Explorer Nexus (Feb 11)