This bug is also present in Microsoft's flagship operating system Windows 2000 On Thu, 18 Nov 1999, Pauli Ojanpera wrote: > Just if someone needs to know... > > Win98/NT4 Riched20.dll (which WordPad uses) has a classic buffer > overflow problem with ".rtf"-files. > > Crashme.rtf : > {\rtf\AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA} > > A malicious document may probably abuse this to execute arbitary > code. WordPad crashes with EIP=41414141. > > Someone else do deeper investigation since I don't care to. > > ______________________________________________________ > Get Your Private, Free Email at http://www.hotmail.com >
This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 15:13:26 PDT