| Regarding a new CERT advisory |
Fri, 17 September 2004 09:58  |
|
 Crusader |
 | Officer Cadet 2nd Year |
Messages: 233
Registered: January 2003
Location: Dixie Land | |
|
| Quote: |
From the latest CERT advisory:
Microsoft's Graphic Device Interface Plus (GDI+) contains a vulnerability in the processing of JPEG images. This vulnerability may allow attackers to remotely execute arbitrary code on the affected system. Exploitation may occur as the result of viewing a malicious web site, reading an HTML-rendered email message, or opening a crafted JPEG image in any vulnerable application. The privileges gained by a remote attacker depend on the software component being attacked.
|
I don't usually get off track from Stars! this way, nor do I try to be an alarmist, however, I know that I like to transfer information regarding ship/starbase configurations, etc. using JPEG files when playing, and some of you others do also.
This is to warn all of you that I will not be so happy about receiving JPEG files as I used to be, and until I have an opportunity to check my system out for being vulnerable I will most likely ignore any email containing JPEG's.
If it were not for work, I would be off of Micro$oft and on Linux and Open Office exclusively. 
It's not that Linux and Open Office are totally immune to security issues, but if I'm going to have to fight them, I would rather be fighting them with a product that doesn't cost me an arm and a leg to implement and support. 
Your friendly neighborhood Crusader
Nothing for now.Report message to a moderator
|
|
|
|
Members
Search
Help
Register
Login
Home
