subject:"\[Full\-disclosure\] \[SVRT\-05\-08\] Critical BoF vulnerability found in ffdshow affecting all internet browsers \(SVRT\-Bkis\)"

Re: [Full-disclosure] [SVRT-05-08] Critical BoF vulnerability found in ffdshow affecting all internet browsers (SVRT-Bkis)

2008-11-25 Thread svrt

Hi, To Nguyen Nam : You can see details in http://sourceforge.net/forum/forum.php?forum_id=597807 Besides, K-lite Codec Pack that contains the fixed version of ffdshow have been released today (11-26-2008). Thanks, SVRT-Bkis Ba

Re: [Full-disclosure] [SVRT-05-08] Critical BoF vulnerability found in ffdshow affecting all internet browsers (SVRT-Bkis)

2008-11-25 Thread Eygene Ryabinkin

Good day. Mon, Nov 24, 2008 at 03:17:05PM +0700, svrt wrote: > In Oct 2008, SVRT-Bkis has detected a serious buffer overflow vulnerability > in ffdshow which affects all available internet browsers. ^^^ Really? And links, elinks, lynx, dillo

Re: [Full-disclosure] [SVRT-05-08] Critical BoF vulnerability found in ffdshow affecting all internet browsers (SVRT-Bkis)

2008-11-24 Thread Nam Nguyen

The report is for ffdshow, but the referred URL is to ffdshow-tryout. I wonder if they are the same. Cheers Nam On Mon, 24 Nov 2008 15:17:05 +0700 "svrt" <[EMAIL PROTECTED]> wrote: > 1. General Information > > ffdshow is a DirectShow filter and VFW codec for many audio and video > formats, su

[Full-disclosure] [SVRT-05-08] Critical BoF vulnerability found in ffdshow affecting all internet browsers (SVRT-Bkis)

2008-11-24 Thread svrt

1. General Information ffdshow is a DirectShow filter and VFW codec for many audio and video formats, such as DivX, Xvid and H.264. It is the most popular audio and video decoder on Windows. Besides a stand-alone setup package, ffdshow is often included in almost all codec pack software such as