RE: MSIE vulnerability exploitable with IncrediMail

From: Eric Detoisien (eric.detoisien@global-secure.fr)
Date: Fri Mar 15 2002 - 16:53:47 PST

Next message: Forrest J Cavalier III: "Re: about zlib vulnerability - Microsoft products"

Previous message: Thor Larholm: "RE: MSIE vulnerability exploitable with IncrediMail"
Maybe in reply to: Eric Detoisien: "MSIE vulnerability exploitable with IncrediMail"
Next in thread: Thor Larholm: "RE: MSIE vulnerability exploitable with IncrediMail"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

>Isn't {42D00B20-479C-11d4-9706-00105A40931C} a GUID for your user account,
>and as such unknown from time to time, making the proposed exploit
>unfeasable ?

It's a clsid and the number {42D00B20-479C-11d4-9706-00105A40931C} is the same
on default installation of IncrediMail Xe (tested on W2K and W98).


Eric DETOISIEN
GLOBAL SECURE
Web : http://www.global-secure.fr

Next message: Forrest J Cavalier III: "Re: about zlib vulnerability - Microsoft products"
Previous message: Thor Larholm: "RE: MSIE vulnerability exploitable with IncrediMail"
Maybe in reply to: Eric Detoisien: "MSIE vulnerability exploitable with IncrediMail"
Next in thread: Thor Larholm: "RE: MSIE vulnerability exploitable with IncrediMail"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Sun Mar 17 2002 - 02:06:21 PST