Last Updated: 2006-01-09 22:02:13 UTC
by William Salusky (Version: 2)
reference: http://www.securityfocus.com/bid/16167 (Sorry, you have to cut/paste).
So, is there a new WMF remote code execution threat here?
Microsoft representative response:
"The short answer is no. These are not exploitable bugs (DoS only)"
The SANS handlers have been notified that a Microsoft official response to Today's Bugtraw disclosure will be posted shortly at:
<resume handler musings> However, Infosec history teaches us that where there is DoS(PoC), there very likely is remote code execution. I myself will wait for smarter folks than myself to prove the statement.