|
Attempted User Privilege Gain
Sometimes, when browsing these forums my IDS starts screaming about attempted user privilege gain attacks form the forum's IP.
* Directshow GIF logical width overflow attempt * Directshow GIF logical height overflow attempt Could be false positives. I thought I would let you know... |
Someone might have (intentional or not) malformed gifs as avatars, but I doubt, I assume that your toy doesn't know new (animated?) gif formats, and as it is a common practice for the mods here to play with people's avatars, adding mating unicorns or bully guys to them, :razz:, usually by hand, it may be that some errors morphed into the headers of those avatars, making your tool to believe there is a buffer overflow intended... If you add frames to gifs but not modify the headers properly (some tools completely miss to do that!) this can happen. Someone with more rights than me may be able to insulate the problem, if any.
|
[URL]http://www.security-database.com/detail.php?alert=CVE-2013-3174[/URL][QUOTE]DirectShow in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, and Windows Server 2012 allows remote attackers to execute arbitrary code via a crafted GIF file, aka "DirectShow Arbitrary Memory Overwrite Vulnerability."[/QUOTE]:max:
|
| All times are UTC. The time now is 13:42. |
Powered by vBulletin® Version 3.8.11
Copyright ©2000 - 2021, Jelsoft Enterprises Ltd.