On Thu, Aug 26, 2010 at 11:09 AM, Carl Houseman <[email protected]> wrote: > Why would anyone use the 0xFFFFFFFF option to combat the vulnerability?
For the same reason people wanted a way to influence this behavior before it started being attacked: Because it's quite likely that someday it *will* be attacked. In particular, if an attacker can get their attack DLL into a user's writable user profile folder through an unrelated mechanism... -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
