WMF exploit testing on Windows 98



I had hoped to get in another test of Windows 98 with yet another WMF viewer (tried Kodak imaging, and irfanview). So far I haven’t seen a way that the WMF exploits can work on Windows 98 SE. I’m running out of time before I have to run to some computer service appointments and maybe will be able to pick up again this afternoon/evening. Larry Seltzer had a post this morning that earlier versions of Windows might not be as vulnerable because they had no default WMF viewer, but with a default WMF viewer they may be susceptible. I’m still looking for a WMF viewer that makes the exploit possible on Windows 98 SE.


Again, I’ll leave this thread open to comments in case someone else finds a combination that is vulnerable. Previous posts on the issue with WMF and Windows 98 on my site are:

http://www.averyjparker.com/2006/01/02/windows-98-and-the-wmf-exploit/
http://www.averyjparker.com/2006/01/01/version-2-of-the-wmv-exploit-vs-windows-98-se/
http://www.averyjparker.com/2006/01/01/more-wmf-exploit-testing-on-windows-98/
http://www.averyjparker.com/2006/01/01/wmf-exploit-and-windows-98/

Related Posts

Blog Traffic Exchange Related Posts
  • More testing on the second WMF exploit After my Windows 98 tests which failed to exploit the system with either the first or the second vulnerability, I started wondering how well the antivirus companies were doing in detecting this second exploit variation. I had setup and updated metasploit so I could test my Windows 98 SE install......
  • Sony's OTHER DRM software uninstaller will be pulled According to zdnet.com, Sony and SunnComm are pulling the OTHER DRM uninstaller from the web and it will be replaced with a safer version of the uninstaller. Researchers blogging at freedom-to-tinker.com had detailed serious vulnerabilities in the uninstaller for the DRM software made by SunnComm (called MediaMax). The companies say......
  • WMF 0-day exploit There seems to be a 0-day exploit involving WMF (Windows Meta File's) according to SANS. Here's their lead-in Just when we thought that this will be another slow day, a link to a working unpatched exploit in, what looks like Windows Graphics Rendering Engine, has been posted to Bugtraq. It's......
Blog Traffic Exchange Related Websites
  • Etihad Airways Etihad Airways is the National Airline of the United Arab Emirates. Etihad started commercial operations in November 2003 with Abu Dhabi, the capital of the UAE, as its hub. After the launch in November 2003 the airline grew at a phenomenal pace, adding almost one new route a month.......
  • The Research of Monkey Business This is a post written by Avishai Shuter, and up-and-coming zoologist who lives in his parents house while on the cusp of getting a job with the Bronx Zoo. Finance is a complex topic- a combination of art and science…and other things I’m sure I'm just not aware of. Millions of......
  • Authenticated API I think the authenticated API is big news.  It signals additional development in an area that will benefit the entire community... I hope that there is much more to come. Here I will quickly run down various things I have done with the API since the inception... First of all......
www.pdf24.org    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

3 Responses to “WMF exploit testing on Windows 98”

  1. caius Says:


    The following HTML snippet turns InternetExplorer 5.0 into a WMF viewer; doesn’t work with Mozilla. Only tested with valid WMF files;

  2. caius Says:


    [less than] img src=”file.wmf” alt=”not vulnerable” [greaterthan]

  3. Avery Says:


    I tested that possibility – it didn’t render, didn’t trigger the exploit. IE treated it like a broken image.

Leave a Reply

You must be logged in to post a comment.


Switch to our mobile site