Recent gdi32.dll vulnerabilities discovered by @j00ru lack a valid vector (selfhack?). Tons of issues there if allowed to write your own app
-
-
agree on 168 and part of 169.Regarding others, possibility is theory unless there is a real world step-by-step way to trigger.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
The only requirement for CVE-2016-0170 and other parts of CVE-2016-0169 is that an EMF is played to a printer HDC, [cont]
-
a possibility which was not investigated thoroughly, but seems very likely to occur in many GDI clients.
-
agree, ofc, on "possible" and "seems" part. But, not a solid reasoning. I however realize you don't have that much time to invest. :)
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.