http://www.3nailsministries.org/2006/01/09/this-is-sorta-scary/ Walking the walk, sometimes crawling, often falling Thu, 10 Sep 2009 22:22:08 +0000 http://wordpress.org/?v=2.9.2 hourly 1 http://www.3nailsministries.org/2006/01/09/this-is-sorta-scary/comment-page-1/#comment-25817 pilgrim Tue, 10 Jan 2006 12:48:07 +0000 http://3nailsministries.org/?p=241#comment-25817 and since the vulnerability is a design feature of the WMF spec, there's not much you can do about it. I believe M$'s patch was pretty well localized to the GDI32.dll and that other one that escapes me at the moment. If apps, like Outlook, have their own engine for interpreting this format the problem begins to grow. and since the vulnerability is a design feature of the WMF spec, there’s not much you can do about it. I believe M$’s patch was pretty well localized to the GDI32.dll and that other one that escapes me at the moment. If apps, like Outlook, have their own engine for interpreting this format the problem begins to grow.

]]> http://www.3nailsministries.org/2006/01/09/this-is-sorta-scary/comment-page-1/#comment-25798 Knox Tue, 10 Jan 2006 10:32:35 +0000 http://3nailsministries.org/?p=241#comment-25798 It's frightening to think how much code looks at WMF's and makes decisions about how to handle embedded software calls. When I disabled the DLL for the first WMF exploit, Outlook would still show me WMF files, so it was using its engine to do so. It’s frightening to think how much code looks at WMF’s and makes decisions about how to handle embedded software calls. When I disabled the DLL for the first WMF exploit, Outlook would still show me WMF files, so it was using its engine to do so.

]]>