Login or Register to Ask a Question and Join Our Community


Security Advisories (RSS)

S-254: Vulnerabilities in GDI

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Special Forums Cybersecurity Security Advisories (RSS) S-254: Vulnerabilities in GDI
# 1  
Old 04-11-2008
S-254: Vulnerabilities in GDI
Several remote code execution vulnerabilities exist in the way that GDI handles: 1) integer valculations; and 2) filename parameters in EMF files. The vulnerability could allow remote code execution if a user opens a specially crafted EMF or WMF image file. The risk is HIGH. An attacker who successfully exploited this vulnerability could take complete control of an affected system. This exploit has been seen in the wild.


More...
Login or Register to Ask a Question

Previous Thread | Next Thread

3 More Discussions You Might Find Interesting

1. Red Hat

Openssl vulnerabilities

Hi there, The following openssl package are installed on the machine (openssl-1.0.0-27.el6_4.2.x86_64). It isn't the last version but I need to known if this content Vulnerabilities... How to check that on RedHat? Could you please tell me how to find this information?? Thankx (3 Replies)
Discussion started by: hiero_nymus
3 Replies

2. HP-UX

[Solved] ssh debug1: Exit status 254 problem

Hello; Am experiencing odd problem with ssh: ========= ssh -vvv remote_host : : debug2: channel 0: rcvd adjust 65536 debug2: channel_input_status_confirm: type 99 id 0 debug2: shell request accepted on channel 0 debug1: client_input_channel_req: channel 0 rtype exit-status reply 0... (4 Replies)
Discussion started by: delphys
4 Replies

3. Solaris

What are the NTP 3 vulnerabilities?

Hi Guru I need to know which version of NTP is install in Solaris 10 box. How can I check it. IF NTP 3 in implemented then somebody told me implement NTP 4 due to security reasons, for that I have to tell what are the vulnerabilities present in NTP 3 to higher authorities. I could not able... (5 Replies)
Discussion started by: amity
5 Replies
Login or Register to Ask a Question

LEARN ABOUT MOJAVE

irb

IRB(1)							 Ruby Programmer's Reference Guide						    IRB(1)

NAME

     irb -- Interactive Ruby Shell

SYNOPSIS

     irb [--version] [-dfm] [-I directory] [-r library] [--[no]inspect] [--[no]readline] [--prompt mode] [--prompt-mode mode] [--inf-ruby-mode]
	 [--simple-prompt] [--noprompt] [--tracer] [--back-trace-limit n] [--irb_debug n] [--] [program_file] [argument ...]

DESCRIPTION

     irb is the REPL(read-eval-print loop) environment for Ruby programs.

OPTIONS

     --version	    Prints the version of irb.

     -E external[:internal]
     --encoding external[:internal]
		    Same as `ruby -E' .  Specifies the default value(s) for external encodings and internal encoding. Values should be separated
		    with colon (:).

		    You can omit the one for internal encodings, then the value (Encoding.default_internal) will be nil.

     -I path	    Same as `ruby -I' .  Specifies $LOAD_PATH directory

     -U 	    Same as `ruby -U' .  Sets the default value for internal encodings (Encoding.default_internal) to UTF-8.

     -d 	    Same as `ruby -d' .  Sets $DEBUG to true.

     -f 	    Suppresses read of ~/.irbrc.

     -h
     --help	    Prints a summary of the options.

     -m 	    Bc mode (load mathn, fraction or matrix are available)

     -r library     Same as `ruby -r'.	Causes irb to load the library using require.

     --inspect	    Uses `inspect' for output (default except for bc mode)

     --noinspect    Doesn't use inspect for output

     --readline     Uses Readline extension module.

     --noreadline   Doesn't use Readline extension module.

     --prompt mode
     --prompt-mode mode
		    Switch prompt mode. Pre-defined prompt modes are `default', `simple', `xmp' and `inf-ruby'.

     --inf-ruby-mode
		    Uses prompt appropriate for inf-ruby-mode on emacs.  Suppresses --readline.

     --simple-prompt
		    Makes prompts simple.

     --noprompt     No prompt mode.

     --tracer	    Displays trace for each execution of commands.

     --back-trace-limit n
		    Displays backtrace top n and tail n.  The default value is 16.

     --irb_debug n  Sets internal debug level to n (not for popular use)

ENVIRONMENT

     IRBRC

     Also irb depends on same variables as ruby(1).

FILES

     ~/.irbrc			       Personal irb initialization.

EXAMPLES

	   % irb
	   irb(main):001:0> 1 + 1
	   2
	   irb(main):002:0> def t(x)
	   irb(main):003:1> x+1
	   irb(main):004:1> end
	   => nil
	   irb(main):005:0> t(3)
	   => 4
	   irb(main):006:0> if t(3) == 4
	   irb(main):007:1> p :ok
	   irb(main):008:1> end
	   :ok
	   => :ok
	   irb(main):009:0> quit
	   %

SEE ALSO

     ruby(1).

REPORTING BUGS

     o	 Security vulnerabilities should be reported via an email to security@ruby-lang.org.  Reported problems will be published after being
	 fixed.

     o	 Other bugs and feature requests can be reported via the Ruby Issue Tracking System (http://bugs.ruby-lang.org).  Do not report security
	 vulnerabilities via this system because it publishes the vulnerabilities immediately.

AUTHORS

     Written by Keiju ISHITSUKA.

UNIX
								 November 15, 2012							      UNIX