Full Disclosure mailing list archives

SANS GDIscan

From: bashis <mcw () wcd se>
Date: Sun, 26 Sep 2004 17:34:04 +0200 (CEST)

Hi

I tested [1] 'gdiscan' from SANS, and this tool reports vulnerable DLL's after
installing all availible patches from M$..

WinXP Pro SP1
C:\WINDOWS\system32\gdiplus.dll
   Version: 5.1.3097.0 <-- Vulnerable version 

Win2k Server SP4
C:\Program Files\Common Files\Microsoft Shared\Ink\gdiplus.dll
   Version: 5.1.3097.0 <-- Vulnerable version 

[1]
http://isc.sans.org/gdiscan.php

Have a nice day
/bashis

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

SANS GDIscan bashis (Sep 26)
- <Possible follow-ups>
- RE: SANS GDIscan Perrymon, Josh L. (Sep 27)