Disclaimer: You are looking at a post I wrote some time ago. The information and opinions contained within may be outdated and may differ from my current views. Please proceed accordingly.

A Ridiculous MS Security Hole

Dec 17, 2003 4:03 PM
Tags:
update This is from over three years ago. Thanks christian (see comments). Their clip art is vulnerable to buffer overflows and ...

Because clip art files are normally downloaded to CAG.EXE without asking the user for confirmation (as would be the case for an executable file format), if a malicious web site hosted a CIL file that exploited the vulnerability, a user could be tricked into executing hostile code without warning.
Combine this with spoofed URLs or a page-redirect and you could do all kinds of naughty stuff to Windows/IE users.

(via 0xDECAFBAD)

Comments: A Ridiculous MS Security Hole

Ah... Good old Firebird and Thunderbird protect me from a lot of bad things that happen to Windows users : ) A hardware and software firewall, anti-virus software, and common sense help, too.

Just from talking to a few "average" Windows users, I fear that a good percentage of computers out there compromised, ready for DoS attacks and spamming.

Posted by: O'dell on December 17, 2003 9:22 PM | permalink

Isn't this a security flaw that was disclosed in 2000? I think that's what the "00" in MS00-015 means, as all of the flaws this year start with MS03.

Posted by: christian on December 19, 2003 9:36 AM | permalink

No more comments! Either someone has violated Godwin's Law, I'm tired of the discussion or, most likely, the ten-week window has closed. You can, however, contact me through email.