RE: [Full-Disclosure] MS-Windows ME IE/Outlook/HelpCenter critical vulnerability

• Previous message: Thomas Biege: "[Full-Disclosure] SuSE Security Announcement: hypermail (SuSE-SA:2003:0012)"
• Maybe in reply to: Fozzy [Hackademy Audit]: "[Full-Disclosure] MS-Windows ME IE/Outlook/HelpCenter critical vulnerability"
• Next in thread: Fozzy [Hackademy Audit]: "Re: [Full-Disclosure] MS-Windows ME IE/Outlook/HelpCenter critical vulnerability"
• Reply: Fozzy [Hackademy Audit]: "Re: [Full-Disclosure] MS-Windows ME IE/Outlook/HelpCenter critical vulnerability"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

To: fozzy@dmpfrance.com, full-disclosure@lists.netsys.com
From: "Quaker Oats" <quakeroats@hushmail.com>
Date: Thu, 27 Feb 2003 08:55:23 -0800

-----BEGIN PGP SIGNED MESSAGE-----

Fozzy,

If you read MSFT's advisory, it seems as though they don't believe Windwos XP is vulnerable at all. This runs counter to what you're saying. What's the deal?

- -----Original Message-----
From: Fozzy [Hackademy Audit] [mailto:fozzy@dmpfrance.com]
Sent: Thursday, February 27, 2003 12:08 AM
To: full-disclosure@lists.netsys.com
Subject: [Full-Disclosure] MS-Windows ME IE/Outlook/HelpCenter critical
vulnerability

/BEGIN CLIP

- --[ Affected Systems ]--

- - Windows ME (any version)
- - Windows XP without SP1

Not vulnerable :
- - Windows XP with SP1

Status of Windows 2000 was not tested but is believed to be the same as
Windows XP.

/END CLIP

Quaker Oats

"...it's mmmm mmmm good"
-----BEGIN PGP SIGNATURE-----
Version: Hush 2.2 (Java)
Note: This signature can be verified at https://www.hushtools.com/verify

wl8EARECAB8FAj5eQrgYHHF1YWtlcm9hdHNAaHVzaG1haWwuY29tAAoJEC2cw+XVsKna
mzsAniIHfWr3Cx1CXQipA1aF6FTlUf7ZAKCNL7udncX2CJFWvD4wPeC/UyVLng==
=pDoM
-----END PGP SIGNATURE-----

Concerned about your privacy? Follow this link to get
FREE encrypted email: https://www.hushmail.com/?l=2

Big $$$ to be made with the HushMail Affiliate Program:
https://www.hushmail.com/about.php?subloc=affiliate&l=427
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

• Next message: Fozzy [Hackademy Audit]: "Re: [Full-Disclosure] MS-Windows ME IE/Outlook/HelpCenter critical vulnerability"
• Previous message: Thomas Biege: "[Full-Disclosure] SuSE Security Announcement: hypermail (SuSE-SA:2003:0012)"
• Maybe in reply to: Fozzy [Hackademy Audit]: "[Full-Disclosure] MS-Windows ME IE/Outlook/HelpCenter critical vulnerability"
• Next in thread: Fozzy [Hackademy Audit]: "Re: [Full-Disclosure] MS-Windows ME IE/Outlook/HelpCenter critical vulnerability"
• Reply: Fozzy [Hackademy Audit]: "Re: [Full-Disclosure] MS-Windows ME IE/Outlook/HelpCenter critical vulnerability"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages SecurityFocus Microsoft Newsletter #163 ... MICROSOFT VULNERABILITY SUMMARY ... Bugzilla Javascript Buglists Remote Information Disclosure V... ... Microsoft Internet Explorer DHTML Drag and Drop Local File S... ... Microsoft Windows Workstation Service Remote Buffer Overflow... ... (Focus-Microsoft) SecurityFocus Microsoft Newsletter #176 ... MICROSOFT VULNERABILITY SUMMARY ... Microsoft Windows XP HCP URI Handler Arbitrary Command Execu... ... PHPNuke Category Parameter SQL Injection Vulnerability ... Microsoft Baseline Security Analyzer Vulnerability Identific... ... (Focus-Microsoft) SecurityFocus Microsoft Newsletter #158 ... Gamespy 3d IRC Client Remote Buffer Overflow Vulnerability ... Microsoft Windows PostThreadMessage() Arbitrary Process Kill... ... (Focus-Microsoft) SecurityFocus Microsoft Newsletter #123 ... Spooked about Windows security? ... Rediff Bol URL Handling Denial Of Service Vulnerability ... Finjan SurfinGate File Extension File Filter Circumvention... ... MIT Kerberos Key Distribution Center Remote Format String... ... (Focus-Microsoft) SecurityFocus Microsoft Newsletter #177 ... RobotFTP Server Username Buffer Overflow Vulnerability ... Ipswitch IMail Server Remote LDAP Daemon Buffer Overflow Vul... ... Microsoft Windows XP Help And Support Center Interface Spoof... ... (Focus-Microsoft)