Jump to content

Microsoft Security Advisory (972890)

Guest wsxedcrfv

By Guest wsxedcrfv
in Windows 9x/ME

 Share

Recommended Posts


cluberti

cluberti

Posted
Posted
Why are there so many CLSID's?

If we're dealing with just one control, why not just one CLSID kill-bit entry?

Probably lots of different versions, or the control has a lot of entry points (each exposed COM interface needs a class ID).

Link to comment
Share on other sites
  • 3 weeks later...
Queue

Queue

Posted
Posted

That is what would be considered a knee-jerk reaction. The severity of their killbit bypass isn't clear, nor is it (currently) seeing wide-spread exploitation, nor is it known if it affects 9x systems.

Queue

Link to comment
Share on other sites
cluberti

cluberti

Posted
Posted
Killbits are dead : http://www.hustlelabs.com/bh2009preview/

Bottom line, don't use IE, or any app that embeds its runtime, for going online.

Wow, way to jump to conclusions. Want a mat? ;) The vulnerability is in the ATL code used when building COM components in Visual Studio (all the way back to VC6), not IE - the fix is so that IE won't load any controls that ARE vulnerable. Note that any application that loads C/C++ code built with ATL that is vulnerable, is vulnerable.
Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...