Re: [Full-disclosure] AOL YGP Picture Editor YGPPicEdit.dll Multiple Buffer Overflows

From: <Valdis.Kletnieks_at_nospam>
Date: Thu Dec 27 2007 - 18:11:03 GMT
To: Elazar Broad <elazarb@earthlink.net>

On Thu, 27 Dec 2007 10:05:08 EST, Elazar Broad said:
> After some more analysis by Carsten Eiram @ Secunia, this is NOT exploitable.
> I would like to apologize for the hasty post. SecurityFocus, please update bid
> 27026 to reflect the fact that at most, this can just crash the browser.

And sometimes you get stuck at 95% of the way there. ;)

Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/

This message: [ Message body ]
Next message: reepex: "Re: [Full-disclosure] AOL YGP Picture Editor YGPPicEdit.dll Multiple Buffer Overflows"
Previous message: Luigi Auriemma: "[Full-disclosure] Multiple vulnerabilities in libnemesi 0.6.4-rc1"
In reply to: Elazar Broad: "Re: [Full-disclosure] AOL YGP Picture Editor YGPPicEdit.dll Multiple Buffer Overflows"
Next in thread: reepex: "Re: [Full-disclosure] AOL YGP Picture Editor YGPPicEdit.dll Multiple Buffer Overflows"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ]