| TIP: Click on subject to list as thread! | ANSI |
| echo: | |
|---|---|
| to: | |
| from: | |
| date: | |
| subject: | Re: CreateTextRange? |
From: Mike N. On Wed, 29 Mar 2006 09:36:21 -0500, "Frank Haber" wrote: >No noise here about this latest vuln? Flash in the pan? In the realm of 0-day browser vulnerabilities, this one's nothing new. By now I've already got my own mix of Firefox + restricted-IE-only. And I've topped them off with the reduced privilege feature of Sysinternals' PsExec. Although it sounds like the hacking community have already begun to consider operation under PsExec, by looking for privilege escalation via unprotected registry entries. PsExec offers no protection against the CreateTextRange() bug, it just reduces the probability of immediate damage if the attacking trojan didn't consider it. The complicated question is how do I have friends and family protect themselves? No surfing until Patch day! --- BBBS/NT v4.01 Flag-5* Origin: Barktopia BBS Site http://HarborWebs.com:8081 (1:379/45) SEEN-BY: 633/267 270 5030/786 @PATH: 379/45 1 106/2000 633/267 |
|
| SOURCE: echomail via fidonet.ozzmosis.com | |
Email questions or comments to sysop@ipingthereforeiam.com
All parts of this website painstakingly hand-crafted in the U.S.A.!
IPTIA BBS/MUD/Terminal/Game Server List, © 2025 IPTIA Consulting™.