26 Windows, Office holes patched in 13 bulletins

Discussion in 'other security issues & news' started by ronjor, Feb 9, 2010.

Thread Status:
Not open for further replies.
  1. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    57,778
    Location:
    Texas
    Article
     
  2. SmackyTheFrog

    SmackyTheFrog Registered Member

    Joined:
    Nov 5, 2007
    Posts:
    767
    Location:
    Lansing, Michigan
    One of the patches is for a remote code exploit in MSPaint. I am at a loss for words.
     
  3. JRViejo

    JRViejo Global Moderator

    Joined:
    Jul 9, 2008
    Posts:
    20,966
    Location:
    U.S.A.
     
    Last edited: Feb 10, 2010
  4. captainron

    captainron Registered Member

    Joined:
    Oct 22, 2009
    Posts:
    77
    unique way to attack a computer but doesn't really surprise me, I've seen scripts that cause adobe to instantly open and exploit adobe, I'm sure similar could be done to mspaint.

    interesting info also JRViejo
     
  5. Rmus

    Rmus Exploit Analyst

    Joined:
    Mar 16, 2005
    Posts:
    3,943
    Location:
    California
    This is because the user's browser is configured to use the Adobe Plugin to open the PDF file in the browser, hence, auto-exploitation. However, the browser can be easily configured to prompt for a download of the file, rather than using the plugin:

    opera-pdfpref.GIF

    Users with such configuration cannot be victims of this type of auto-exploitation from web-based scripts.

    It's not likely that the MSPaint exploit would work with a script in a web page, since JPG files load by default into the browser; otherwise, we wouldn't see JPG images on a web site:

    opera-jpgpref.gif

    And so, the likely scenario, as Microsoft describes it:

    Microsoft Security Bulletin MS10-005
    http://www.microsoft.com/technet/security/Bulletin/MS10-005.mspx
    You may recall the WMF exploit that targeted a vulnerability in the Windows Picture and Fax viewer , where a web-based script did work, because WMF files do open in that program by default, and not in the browser.

    ----
    rich
     
  6. berng

    berng Registered Member

    Joined:
    Sep 11, 2005
    Posts:
    246
    Location:
    NJ, USA
  7. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    57,778
    Location:
    Texas
  8. berng

    berng Registered Member

    Joined:
    Sep 11, 2005
    Posts:
    246
    Location:
    NJ, USA
    Thanks. It seems I was sleeping at the terminal.

    I should have known the Wilders bunch would have been on top of this right away. :D
     
Loading...
Thread Status:
Not open for further replies.