Mel
0
http://isc.sans.org/diary.php?date=2004-12-23
I'm not dreaming of a 0-day Xmas
The holiday news continues to be bleak, with a pair of critical vulnerabilities for Windows NT/2000/2003/XP. First, unless you're running XP SP2, there is a buffer overflow in the LoadImage API, resulting in bitmaps, icons, and animated cursor data files (.bmp, .cur, .ico, and .ani) that can be exploited via HTML delivered either via email or a website. This vulnerability can be used to execute code. Secondly, there is a heap overflow in winhlp32.exe while processing help files on Windows, including XP SP2, apparently. Try not to install help files until some Tuesday in, we hope, January.
and
http://news.com.com/Exploits+releas...4.html?part=rss&tag=5502534&subj=news.1002.20
A Chinese security group has released sample code to exploit two new unpatched flaws in Microsoft Windows.
Oh and merry Christmas.























