Random Entry: Squinting at Security Drivers & Perspective-based Biases
< Hair-do | Patch Window Poll >

A Bad Patch

This is a nice example of a patch that doesn't properly fix the bug. MS05-018 only added validation on one path to the vulnerable function allowing an exploit to avoid validation by reaching the function through another execution path. MS05-049 eventually fixed the vulnerable function.

Friday, October 21. 2005
Posted by Dominic White in Masters
Comments (0) | Trackbacks (0)

Last modified on 2005-10-21 01:24

Trackbacks

Trackback specific URI for this entry

No Trackbacks

Comments

Display comments as (Linear | Threaded)

No comments

Add Comment

Name
Email
Homepage
In reply to
Comment	E-Mail addresses will not be displayed and will only be used for E-Mail notifications. To prevent automated Bots from commentspamming, please enter the string you see in the image below in the appropriate input box. Your comment will only be submitted if the strings match. Please ensure that your browser supports and accepts cookies, or your comment cannot be verified correctly. Enter the string from the spam-prevention image above:
	Remember Information? Subscribe to this entry