Re: [Full-Disclosure] how do they do it???

From: Thor Larholm (lists.netsys.com_at_jscript.dk)
Date: 07/10/03

  • Next message: Rob Wultsch: "Re: [Full-Disclosure] how do they do it???"
    To: <full-disclosure@lists.netsys.com>, <zorkshin@tampabay.rr.com>
    Date: Thu, 10 Jul 2003 21:42:43 +0200
    
    

    > From: <zorkshin@tampabay.rr.com>
    > http://www.albinoblacksheep.com/text/cupholder.php
    >
    > how do you think they do it in PHP?

    Thank you for confirming that you have NOT installed the MS03-021 patch [1] for
    Windows Media Player, which among others removes the ability to eject CD drives
    using the WMP ActiveX control. I can now safely assume that you are vulnerable
    to several vulnerabilities.

    Do you want an HTML email? ;)

    [1]
    http://www.microsoft.com/technet/security/bulletin/ms03-021.asp

    Regards
    Thor Larholm
    PivX Solutions, LLC - Senior Security Researcher

    _______________________________________________
    Full-Disclosure - We believe in it.
    Charter: http://lists.netsys.com/full-disclosure-charter.html


  • Next message: Rob Wultsch: "Re: [Full-Disclosure] how do they do it???"