If this is your first visit, be sure to check out the FAQ by clicking the link above. You may have to register before you can post: click the register link above to proceed. To start viewing messages, select the forum that you want to visit from the selection below. |
|
|
Thread Tools | Display Modes |
#51
|
|||
|
|||
Bruce Murphy wrote:
That's not necessarily true. Not all buffer overruns are exploitable, and not all bugs are buffer overruns. Do you have any specific information about the bug you're triggering being a naive buffer overflow about its vulnerability? This is definitely a buffer overrun, a bad one! Therefore the crashes. I know that this should better be fixed (as is done in IJG 6b). I'm no expert in exploit writing, but I've seen opinions from people that it is only a question of time until proof-of-concept-exploits appear. Regards Guido |
#52
|
|||
|
|||
Bruce Murphy wrote:
That's not necessarily true. Not all buffer overruns are exploitable, and not all bugs are buffer overruns. Do you have any specific information about the bug you're triggering being a naive buffer overflow about its vulnerability? This is definitely a buffer overrun, a bad one! Therefore the crashes. I know that this should better be fixed (as is done in IJG 6b). I'm no expert in exploit writing, but I've seen opinions from people that it is only a question of time until proof-of-concept-exploits appear. Regards Guido |
#53
|
|||
|
|||
Gisle Hannemyr wrote:
"Bart van der Wolf" writes: "Jer" wrote: On WinXP SP1, Nutscrape 7.2 okay, MS Internet Exploder 6.0 exploded. Before AND after the patch? On my system (XP Pro SP1), the patch solved the issue of shutting down. MS IE version 6.0.2800.1106.xpsp2.030422-1633. I'm running: WinXP Pro ver. 2002 SP 2 MS IE ver. 6.0.2900.2180.xpsp_sp2_rtm.040803-2148CO; SP2 Believe that's as up-to-date as they come. Opening the JPEG crashed MSIE (buffer overrun), but didn't affect the OS. No buffer overrun on Linux (with Mozilla 1.7). The buffer overrun problem is in Microsoft's JPEG handler module, which is shared by a lot of MS software. It in no way affects Mozilla software, or software that runs on non-MS Operating systems, with the possible exception of IE versions on Mac, and older versions on Unix. |
#54
|
|||
|
|||
*** post for FREE via your newsreader at post.newsfeed.com ***
"Guido" == Guido Vollbeding writes: Guido No, both problems are "Buffer Overrum" problems, Too much light or dark rum, there? It's a few days late to be perking up to Captain Morgan's... "Talk like a pirate day" was the 19th. -- Randal L. Schwartz - Stonehenge Consulting Services, Inc. - +1 503 777 0095 URL:http://www.stonehenge.com/merlyn/ Perl/Unix/security consulting, Technical writing, Comedy, etc. etc. See PerlTraining.Stonehenge.com for onsite and open-enrollment Perl training! -----= Posted via Newsfeed.Com, Uncensored Usenet News =----- http://www.newsfeed.com - The #1 Newsgroup Service in the World! -----== 100,000 Groups! - 19 Servers! - Unlimited Download! =----- |
#55
|
|||
|
|||
*** post for FREE via your newsreader at post.newsfeed.com ***
"Guido" == Guido Vollbeding writes: Guido No, both problems are "Buffer Overrum" problems, Too much light or dark rum, there? It's a few days late to be perking up to Captain Morgan's... "Talk like a pirate day" was the 19th. -- Randal L. Schwartz - Stonehenge Consulting Services, Inc. - +1 503 777 0095 URL:http://www.stonehenge.com/merlyn/ Perl/Unix/security consulting, Technical writing, Comedy, etc. etc. See PerlTraining.Stonehenge.com for onsite and open-enrollment Perl training! -----= Posted via Newsfeed.Com, Uncensored Usenet News =----- http://www.newsfeed.com - The #1 Newsgroup Service in the World! -----== 100,000 Groups! - 19 Servers! - Unlimited Download! =----- |
#56
|
|||
|
|||
Randal L. Schwartz wrote:
*** post for FREE via your newsreader at post.newsfeed.com *** "Guido" == Guido Vollbeding writes: Guido No, both problems are "Buffer Overrum" problems, Too much light or dark rum, there? It's a few days late to be perking up to Captain Morgan's... "Talk like a pirate day" was the 19th. What does this comment add to the discussion? -- Frank ess |
#57
|
|||
|
|||
"Frank ess" writes:
Randal L. Schwartz wrote: *** post for FREE via your newsreader at post.newsfeed.com *** "Guido" == Guido Vollbeding writes: Guido No, both problems are "Buffer Overrum" problems, Too much light or dark rum, there? It's a few days late to be perking up to Captain Morgan's... "Talk like a pirate day" was the 19th. What does this comment add to the discussion? What does /that/ comment add to the discussion? B |
#58
|
|||
|
|||
"Frank ess" writes:
Randal L. Schwartz wrote: *** post for FREE via your newsreader at post.newsfeed.com *** "Guido" == Guido Vollbeding writes: Guido No, both problems are "Buffer Overrum" problems, Too much light or dark rum, there? It's a few days late to be perking up to Captain Morgan's... "Talk like a pirate day" was the 19th. What does this comment add to the discussion? What does /that/ comment add to the discussion? B |
#59
|
|||
|
|||
Bruce Murphy wrote:
"Frank ess" writes: Randal L. Schwartz wrote: *** post for FREE via your newsreader at post.newsfeed.com *** "Guido" == Guido Vollbeding writes: Guido No, both problems are "Buffer Overrum" problems, Too much light or dark rum, there? It's a few days late to be perking up to Captain Morgan's... "Talk like a pirate day" was the 19th. What does this comment add to the discussion? What does /that/ comment add to the discussion? I asked first. |
#60
|
|||
|
|||
Bruce Murphy wrote:
"Frank ess" writes: Randal L. Schwartz wrote: *** post for FREE via your newsreader at post.newsfeed.com *** "Guido" == Guido Vollbeding writes: Guido No, both problems are "Buffer Overrum" problems, Too much light or dark rum, there? It's a few days late to be perking up to Captain Morgan's... "Talk like a pirate day" was the 19th. What does this comment add to the discussion? What does /that/ comment add to the discussion? I asked first. |
Thread Tools | |
Display Modes | |
|
|
Similar Threads | ||||
Thread | Thread Starter | Forum | Replies | Last Post |
JPEG Questions: Loss In Quality When "Saving" | Xtx99 | General Photography Techniques | 3 | April 8th 04 04:25 PM |
Try this pack that came from the Microsoft Corp. | splitload | Film & Labs | 0 | October 13th 03 11:27 PM |
Try this pack that came from the Microsoft Corp. | splitload | APS Photographic Equipment | 0 | October 13th 03 11:27 PM |
Try this pack that came from the Microsoft Corp. | splitload | Other Photographic Equipment | 0 | October 13th 03 11:27 PM |