Thanks Andrew! -Nick
Colbeck, Andrew wrote:
Today is Microsoft Patch Tuesday for July 2005. One of the bulletins is: http://www.microsoft.com/technet/security/Bulletin/MS05-036.mspx Which fails to indicate which graphics formats are affected by this vulnerability. It does mention that abuse thereof is indeed in the wild. Presumably on websites, but if you want to make sure that it is not happening in email, you will want to remove these optimizations from your Declude virus.cfg file: SKIPEXT JPG SKIPEXT JPEG SKIPEXT PNG SKIPEXT TIF SKIPEXT TIFF This contradicts my posting in May 2005 that Scott Perry said that JPG skipping was ok vis a vis MS04-028 Q833987 because Declude Virus checks for corrupt JPG regardless of the SKIPEXT behaviour. That is, unless the Declude code is so good that it checks all three of these formats for rigorous adherence to their standards such that it protects the Microsoft libraries! Andrew 8) --- This E-mail came from the Declude.Virus mailing list. To unsubscribe, just send an E-mail to [EMAIL PROTECTED], and type "unsubscribe Declude.Virus". The archives can be found at http://www.mail-archive.com.
--- This E-mail came from the Declude.Virus mailing list. To unsubscribe, just send an E-mail to [EMAIL PROTECTED], and type "unsubscribe Declude.Virus". The archives can be found at http://www.mail-archive.com.
