Re: Windows binary of "GSview 4.8" contain vulnerable zlib (CAN-2005-2096)

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Re: Windows binary of "GSview 4.8" contain vulnerable zlib (CAN-2005-2096)
From: farion42@xxxxxxxx
Date: 20 Oct 2007 09:55:01 -0000
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm

As a workaround, one could try to manually replace zlib32.dll in a Windows 
GSView 4.8 installation with the current zlib1.dll version 1.2.3.

"Applications linking statically with or using their own copy of zlib 1.1.3 or 
earlier must be recompiled to avoid the security problem described here. 
Otherwise it is sufficient to upgrade the shared zlib library then restart all 
applications using it."[1]


[1] http://www.zlib.net/apps.html

Follow-Ups:
- Re: Windows binary of "GSview 4.8" contain vulnerable zlib (CAN-2005-2096)
  - From: Stefan Kanthak

Prev by Date: [SECURITY] [DSA 1392-1] New xulrunner packages fix several vulnerabilities
Next by Date: Simple Machines Forum multiple sql injection flaws with exploit code.
Previous by thread: Windows binary of "GSview 4.8" contain vulnerable zlib (CAN-2005-2096)
Next by thread: Re: Windows binary of "GSview 4.8" contain vulnerable zlib (CAN-2005-2096)
Index(es):
- Date
- Thread