[Fwd: load Trojan thru Clipart!]

Subject: [Fwd: load Trojan thru Clipart!]
From: Gary Stoneburner <stoneburner@nist.gov>
Date: Wed, 15 Nov 2000 10:32:32 -0500
Content-Type: multipart/signed; protocol="application/x-pkcs7-signature"; micalg=sha1; boundary="------------msFE82FC1084DDA671D4E99520"

-------- Original Message --------
Subject: load Trojan thru Clipart!
From: Gary Stoneburner <gary.stoneburner@nist.gov>
To: sec-info

re: http://www.l0pht.com/advisories/ms-clipart.txt

This is really cool.  Imagine loading malicious code through a piece of
clip art!

"ClipArt Gallery (CAG.EXE) that comes with Microsoft Office 2000
processes ".CIL" files for installation of clipart from the Internet.
The
CIL format is not handled properly by CAG.EXE and one of the internal
fields
in the file presents a buffer overflow condition, allowing arbitrary
code to
be executed by an attacker."

Cheers,
Gary

PS - Thanks to Ken Frazier at Boeing for this reference.

S/MIME Cryptographic Signature

Prev by Date: [Fwd: COTS isn't getting better :-)]
Next by Date: [Fwd: Latest viruses exploit human frailties]
Prev by thread: [Fwd: Latest viruses exploit human frailties]
Next by thread: [Fwd: COTS isn't getting better :-)]

Date Index | Thread Index | Problems or questions? Contact list-master@nist.gov