The same code that makes IE vulnerable to the gopher buffer overrun apparently got used in ISA / MS Proxy too. The only difference is that on those boxes, the buffer overrun will occur as the LocalSystem user. Ouch. More info at: http://www.microsoft.com/technet/security/bulletin/MS02-027.asp (And, no, an attacker doesn't need access to your proxy ports to exploit the vulnerability.) /Mike P.S. Paul: V punyx hc nabgure cbvag sbe fgngrshy obkrf, nygubhtu V'z fher lbh jba'g nterr va guvf fcrpvsvp pnfr ;) -- Mikael Olsson, Clavister AB Storgatan 12, Box 393, SE-891 28 �RNSK�LDSVIK, Sweden Phone: +46 (0)660 29 92 00 Mobile: +46 (0)70 26 222 05 Fax: +46 (0)660 122 50 WWW: http://www.clavister.com -- Firewalls mailing list - [ [EMAIL PROTECTED] ] To unsubscribe: http://www.isc.org/services/public/lists/firewalls.html
