EWIDO gdiplus.dll vulnerable

Discussion in 'other anti-trojan software' started by Paul Revere, Sep 28, 2004.

Thread Status:
Not open for further replies.
  1. Paul Revere

    Paul Revere Guest

    to the much-discussed JPEG GDI vulnerability (MS04-02:cool:?

    Scanning Drive C:...
    C:\Program Files\Common Files\Microsoft Shared\VGX\vgx.dll
    Version: 6.0.2800.1106 <-- Possibly vulnerable (Win2K SP2 and SP3 w/IE6 SP1 only)
    C:\Program Files\ewido\security suite\gdiplus.dll
    Version: 5.1.3097.0 <-- Vulnerable version
    C:\WINDOWS\$NtUninstallKB839645$\sxs.dll
    Version: 5.1.2600.1106 <-- Possibly vulnerable (Backup for uninstall purposes)
    C:\WINDOWS\LastGood\System32\DllCache\sxs.dll
    Version: 5.1.2600.1106 <-- Vulnerable version
    C:\WINDOWS\LastGood\System32\sxs.dll
    Version: 5.1.2600.1106 <-- Vulnerable version
    C:\WINDOWS\system32\dllcache\sxs.dll
    Version: 5.1.2600.1515
    C:\WINDOWS\system32\dllcache\vgx.dll
    Version: 6.0.2800.1106 <-- Possibly vulnerable (Win2K SP2 and SP3 w/IE6 SP1 only)
    C:\WINDOWS\system32\sxs.dll
    Version: 5.1.2600.1515
    C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.0.0_x-ww_8d353f13\GdiPlus.dll
    Version: 5.1.3097.0 <-- Possibly vulnerable (Windows Side-By-Side DLL)
    C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.10.0_x-ww_712befd8\GdiPlus.dll
    Version: 5.1.3101.0 <-- Possibly vulnerable (Windows Side-By-Side DLL)
    C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.1360_x-ww_24a2ed47\GdiPlus.dll
    Version: 5.1.3102.1360
    Scan Complete.
     
  2. peter.ewido

    peter.ewido former ewido team

    Joined:
    Nov 10, 2003
    Posts:
    737
    Location:
    Brno, Czech Republic
    Couldn't have said it better ;) Nevertheless we'll include the patched version in our new release.
     
  3. Paul Revere

    Paul Revere Guest

    Great! Thank you! (The "Paul Revere" thing wasn't working too well, anyway).
     
Thread Status:
Not open for further replies.