GDI+ JPEG exploit

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: GDI+ JPEG exploit
From: <albatross@xxxxxx>
Date: 6 Oct 2004 08:00:06 -0000
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm


The SANS is warning to a JPEG image with MS04-028 overflow that downloads and 
executes a jpeg.exe file. The program modifies the registry and installs in 
autorun. It notifies the compromise to an IRC server and waits for commands. 

http://isc.sans.org/diary.php?date=2004-10-05

albatross

Prev by Date: Patch available for multiple high risk vulnerabilities in RealPlayer
Next by Date: SUSE Security Announcement: mozilla (SUSE-SA:2004:036)
Previous by thread: Patch available for multiple high risk vulnerabilities in RealPlayer
Next by thread: SUSE Security Announcement: mozilla (SUSE-SA:2004:036)
Index(es):
- Date
- Thread