On TechRepublic: Google Easter Eggs, Pranks, & Oddities
BNET Business Network:
BNET
TechRepublic
ZDNet
TalkBack 37 of 51:
Next »
« Previous
Actually the bug may go a bit deeper...
There's some reports (read as "rumours", in my book) that the fubared code is also used to decode the BMP images embedded in ICOs (icon files). Thus one could also become infected by downloading a carefully crafted new theme or icon set or even embedded BMPs in the resource fork of an application? Blocking images at the firewall won't prevent those subsidiary exploits from coming through.

Can anyone verify the truth of that rumour? If so, we can all note once again that this is the danger of tightly integrating even minour components in an OS.
Posted by: John Le'Brecage   Posted on: 02/18/04 You are currently: a Guest | Members login | Terms of Use
Reply to Story Reply to Message

Alert moderator to an offensive message

Subscribe to this discussion via Email or RSS

Who wrote this alteration of the facts?  OhMyGosh | 02/17/04
sneaky  bway al | 02/18/04
Yaaaaaaawn  Bobby Sskcat | 02/17/04
Security through Obscurity does NOT work  DonnieBoy | 02/17/04
Source code opens window to old IE flaw  Loverock Davidson | 02/17/04
Who are you talking to?  doe_z | 02/17/04
He's Troll, what do you expect?  voska | 02/18/04
Not just a troll, THE TROLL  voska | 02/18/04
Who are you talking to?  SC-man | 02/18/04
Yes, much of this code is still in Win2003.  DonnieBoy | 02/17/04
What on earth are you talking about?  Michael Kelly | 02/18/04
what do you expect  rock06r | 02/18/04
but...  ryusen | 02/18/04
However....  rock06r | 02/19/04
Lovesick strikes again, more MS shilling.  NoB$ | 02/18/04
how many  JWatson77 | 02/18/04
IE is the MOST secure web/browser and the MOST used browser FACT!  Xunil_Sierutuf. | 02/17/04
The evidence of lack of security in IE and Microsoft's OS  David Mohring | 02/18/04
Just because it is used more..  Suicida| | 02/18/04
Xunil_Sierutuf == Future is Linux?  John Le'Brecage | 02/18/04
Don't feed the imposter Trolls..  Xunil_Sierutuf | 02/18/04
Screen name  pschroeder@... | 02/18/04
HaHaHa  JWatson77 | 02/18/04
Message has been deleted.  Xunil_Sierutuf | 02/18/04
IE is the 'standard' browser for the internet  DonB_z | 02/17/04
Why?  Suicida| | 02/18/04
W3C makes standards, not IE  CobraA1 | 02/18/04
Sure it's the AOL standard  Jay Cash | 02/18/04
Microsoft's vulnerability - Are You Sure?  Dicko_z | 02/17/04
If that was the case  Suicida| | 02/18/04
The Bible: The Bill Gates Version  DragonBRockin | 02/18/04
Actually...  doctormoriarty | 02/18/04
ask you roem about that  JWatson77 | 02/18/04
move on, nothing to see here  pschroeder@... | 02/18/04
Just funny...  DragonBRockin | 02/18/04
11.8% of users vulnerable  Robert Carnegie | 02/18/04
Actually the bug may go a bit deeper...  John Le'Brecage | 02/18/04
5.01 user base scorned by later releases?  doctormoriarty | 02/18/04
Nothing more fun than source code diving  FilledOut | 02/18/04
what are you waiting for  JWatson77 | 02/18/04
SO WHAT?????  Stewart Cannon | 02/18/04
big fun with DOS on the net  Rembrandt Pussyhorse | 02/18/04
Another form of "Open Source" movement  toomuchgreeatea@... | 02/18/04
Actual Windows source code posted!  Rembrandt Pussyhorse | 02/18/04
I Just Realized  nikoli | 02/18/04
Linux Flaws  gsquared | 02/18/04
What is Linux version 4 and 6?  skeptic tank | 02/18/04
Is that like Win2008 and Win2009?  Damon K | 02/18/04
Re: Linux Flaws  none none | 02/18/04
If proof was need...  Richard Flude | 02/19/04
only 5.01?  ryusen | 02/18/04

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

advertisement
Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors
advertisement

SmartPlanet

Click Here