Results 1 to 5 of 5

Thread: 0-Day vuln Exploit in the wild

  1. #1
    Senior Member
    Join Date
    Apr 2006
    Posts
    100

    Default 0-Day vuln Exploit in the wild

    You can find an Unofficial Patch with Source Code from eEye Digital Security HERE.

    As with every Unofficial Patch : USE IT AT YOUR OWN RISK !

    Greetz, Red.

    Edit:
    Quote Originally Posted by AplusWebMaster View Post
    BTW: I find no one else recommending that patch -except- eEye...
    That is most of the time the case with Unofficial Patches. They have to be researched first. So when they are published ( and if they are good ) it takes a few days before they are "recommended".

    But the patch is published on several security- and non-security related websites.

    Greetz, Red.

    Edit:
    Btw. I forgot to tell you that my source is sans.org

    Greetz, Red.
    Last edited by tashi; 2007-04-01 at 08:03. Reason: Merged three posts to keep AplusWebMaster's thread on track

  2. #2
    Senior Member
    Join Date
    Apr 2006
    Posts
    100

    Default

    Lol And who recommands this patch except from ZERT

    Greetz, Red.
    Last edited by Rednose; 2007-04-02 at 02:12.

  3. #3
    Senior Member
    Join Date
    Apr 2006
    Posts
    100

    Default

    Btw. ZERT don't even know at what version they are : v1 or v2 ...

    Testing the eEye patch on the ZERT test page I got this message :

    you do not appear to be vulnerable to the ie ani cursor exploit
    for more information about the exploit and the patch visit: zert

    note: this test may not be effective against all known and vulnerable versions of user32.dll.
    if the test does not crash your browser, you may still be vulnerable.
    please check the microsoft advisory for a list of known affected software.
    Greetz, Red.

    http://forums.spybot.info/showthread.php?p=77745
    Last edited by tashi; 2007-04-02 at 05:10. Reason: Split off. ;-)

  4. #4
    Senior Member
    Join Date
    Apr 2006
    Posts
    100

    Default

    My last post in this "copy and paste" forum part. There are better security forums.

    Greetz, Red.

  5. #5
    Member of Team Spybot tashi's Avatar
    Join Date
    Oct 2005
    Location
    USA
    Posts
    30,714

    Default

    Quote Originally Posted by Rednose View Post
    There are better security forums.

    Greetz, Red.
    Sorry you feel that way, you can always post your alerts information in this forum.
    All members are free to do so, but probably best to start one's own topic rather post in an on-going one..... to avoid confusion.

    I will close this thread.
    Last edited by tashi; 2007-04-02 at 20:48. Reason: tweak
    Microsoft MVP Reconnect 2018-
    Windows Insider MVP 2016-2018
    Microsoft Consumer Security MVP 2006-2016

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •