Windows XP - New unpatched Library Call vulnerability
Posted
Tuesday, September 18, 2007 10:21 PM
by
hwaldron
This new security could be exploited for DoS or other attacks. This new exposure should be followed for further developments.
Researchers warn of new Microsoft Windows security flaw
http://searchsecurity.techtarget.com/originalContent/0,289142,sid14_gci1272760,00.html
Microsoft Windows CFileFind Class "FindFile()" Buffer Overflow
http://www.frsirt.com/english/advisories/2007/3182
http://secunia.com/advisories/26800/
QUOTE: The following products are currently known to have vectors allowing exploitation:
* HP All-in-One Series Web Release software/driver installer version 2.1.0
* HP Photo & Imaging Gallery version 1.1