Microsoft JPEG Hoax!

Bruce Murphy wrote:

That's not necessarily true. Not all buffer overruns are exploitable,
and not all bugs are buffer overruns. Do you have any specific
information about the bug you're triggering being a naive buffer
overflow about its vulnerability?

This is definitely a buffer overrun, a bad one! Therefore the crashes.
I know that this should better be fixed (as is done in IJG 6b).
I'm no expert in exploit writing, but I've seen opinions from people
that it is only a question of time until proof-of-concept-exploits
appear.

Regards
Guido

Bruce Murphy wrote:

That's not necessarily true. Not all buffer overruns are exploitable,
and not all bugs are buffer overruns. Do you have any specific
information about the bug you're triggering being a naive buffer
overflow about its vulnerability?

This is definitely a buffer overrun, a bad one! Therefore the crashes.
I know that this should better be fixed (as is done in IJG 6b).
I'm no expert in exploit writing, but I've seen opinions from people
that it is only a question of time until proof-of-concept-exploits
appear.

Regards
Guido

Gisle Hannemyr wrote:
"Bart van der Wolf" writes:

"Jer" wrote:


On WinXP SP1, Nutscrape 7.2 okay, MS Internet Exploder 6.0 exploded.


Before AND after the patch?

On my system (XP Pro SP1), the patch solved the issue of shutting
down.
MS IE version 6.0.2800.1106.xpsp2.030422-1633.


I'm running:
WinXP Pro ver. 2002 SP 2
MS IE ver. 6.0.2900.2180.xpsp_sp2_rtm.040803-2148CO; SP2
Believe that's as up-to-date as they come.

Opening the JPEG crashed MSIE (buffer overrun), but didn't affect
the OS.

No buffer overrun on Linux (with Mozilla 1.7).

The buffer overrun problem is in Microsoft's JPEG handler module, which
is shared by a lot of MS software. It in no way affects Mozilla
software, or software that runs on non-MS Operating systems, with the
possible exception of IE versions on Mac, and older versions on Unix.

*** post for FREE via your newsreader at post.newsfeed.com ***

"Guido" == Guido Vollbeding writes:

Guido No, both problems are "Buffer Overrum" problems,

Too much light or dark rum, there? It's a few days late to be
perking up to Captain Morgan's... "Talk like a pirate day" was the 19th.

--
Randal L. Schwartz - Stonehenge Consulting Services, Inc. - +1 503 777 0095
URL:http://www.stonehenge.com/merlyn/
Perl/Unix/security consulting, Technical writing, Comedy, etc. etc.
See PerlTraining.Stonehenge.com for onsite and open-enrollment Perl training!


-----= Posted via Newsfeed.Com, Uncensored Usenet News =-----
http://www.newsfeed.com - The #1 Newsgroup Service in the World!
-----== 100,000 Groups! - 19 Servers! - Unlimited Download! =-----

*** post for FREE via your newsreader at post.newsfeed.com ***

"Guido" == Guido Vollbeding writes:

Guido No, both problems are "Buffer Overrum" problems,

Too much light or dark rum, there? It's a few days late to be
perking up to Captain Morgan's... "Talk like a pirate day" was the 19th.

--
Randal L. Schwartz - Stonehenge Consulting Services, Inc. - +1 503 777 0095
URL:http://www.stonehenge.com/merlyn/
Perl/Unix/security consulting, Technical writing, Comedy, etc. etc.
See PerlTraining.Stonehenge.com for onsite and open-enrollment Perl training!


-----= Posted via Newsfeed.Com, Uncensored Usenet News =-----
http://www.newsfeed.com - The #1 Newsgroup Service in the World!
-----== 100,000 Groups! - 19 Servers! - Unlimited Download! =-----

Randal L. Schwartz wrote:
*** post for FREE via your newsreader at post.newsfeed.com ***

"Guido" == Guido Vollbeding writes:

Guido No, both problems are "Buffer Overrum" problems,

Too much light or dark rum, there? It's a few days late to be
perking up to Captain Morgan's... "Talk like a pirate day" was the
19th.

What does this comment add to the discussion?

--
Frank ess

"Frank ess" writes:

Randal L. Schwartz wrote:
*** post for FREE via your newsreader at post.newsfeed.com ***

"Guido" == Guido Vollbeding writes:

Guido No, both problems are "Buffer Overrum" problems,

Too much light or dark rum, there? It's a few days late to be
perking up to Captain Morgan's... "Talk like a pirate day" was the
19th.

What does this comment add to the discussion?

What does /that/ comment add to the discussion?

B

"Frank ess" writes:

Randal L. Schwartz wrote:
*** post for FREE via your newsreader at post.newsfeed.com ***

"Guido" == Guido Vollbeding writes:

Guido No, both problems are "Buffer Overrum" problems,

Too much light or dark rum, there? It's a few days late to be
perking up to Captain Morgan's... "Talk like a pirate day" was the
19th.

What does this comment add to the discussion?

What does /that/ comment add to the discussion?

B

Bruce Murphy wrote:
"Frank ess" writes:

Randal L. Schwartz wrote:
*** post for FREE via your newsreader at post.newsfeed.com ***

"Guido" == Guido Vollbeding writes:

Guido No, both problems are "Buffer Overrum" problems,

Too much light or dark rum, there? It's a few days late to be
perking up to Captain Morgan's... "Talk like a pirate day" was the
19th.

What does this comment add to the discussion?

What does /that/ comment add to the discussion?

I asked first.

Bruce Murphy wrote:
"Frank ess" writes:

Randal L. Schwartz wrote:
*** post for FREE via your newsreader at post.newsfeed.com ***

"Guido" == Guido Vollbeding writes:

Guido No, both problems are "Buffer Overrum" problems,

Too much light or dark rum, there? It's a few days late to be
perking up to Captain Morgan's... "Talk like a pirate day" was the
19th.

What does this comment add to the discussion?

What does /that/ comment add to the discussion?

I asked first.