MS04-028 requires a gdiplus.dll update?
8 posts
• Page 1 of 1
MS04-028 requires a gdiplus.dll update?
by TH » Mon Sep 20, 2004 9:16 am
The latest MS security patch seems to effect cam2pc. See MS04-028 for details. Shouldn't cam2pc update its gdiplus.dll to the latest version?
- TH
- Posts: 2
- Joined: Mon Sep 20, 2004 8:45 am
by nabocorp » Mon Sep 20, 2004 10:58 am
Hello,
saw this one. Will try to update the DLL with the next patch release of cam2pc 4.4 but I must make sure that everything still works nicely. Such a big update should not be done without caution...
Regards,
nabocorp
saw this one. Will try to update the DLL with the next patch release of cam2pc 4.4 but I must make sure that everything still works nicely. Such a big update should not be done without caution...
Regards,
nabocorp
- nabocorp
- Site Admin
- Posts: 627
- Joined: Thu Nov 07, 2002 6:46 pm
by GGerrits » Tue Sep 28, 2004 7:34 am
Hi,
Please make updating this MS-Bug highpriority. As it is a JPEG related error, this make an imaging programm like cam2pc an easy target.
Other users may find this scanning tool from ISC-SANS also helpful:
http://isc.sans.org/gdiscan.php
Best regards,
Guus Gerrits
Please make updating this MS-Bug highpriority. As it is a JPEG related error, this make an imaging programm like cam2pc an easy target.
Microsoft Security Bulletin MS04-028
Buffer Overrun in JPEG Processing (GDI+) Could Allow Code Execution (833987)
http://www.microsoft.com/technet/securi ... 4-028.mspx
Other users may find this scanning tool from ISC-SANS also helpful:
http://isc.sans.org/gdiscan.php
gdiscan.exe was written for Windows 2000 and higher. It scans the drive containing the Windows %system% directory and Looks for vulnerable versions of gdiplus.dll, sxs.dll, wsxs.dll, mso.dll.
The scan starts upon execution. It will signal completion of scan in text box with "Done."
Vulnerable versions of the .dll files are listed in RED.
Best regards,
Guus Gerrits
- GGerrits
- Posts: 2
- Joined: Tue Sep 28, 2004 7:20 am
- Location: Griesheim (D)
by nabocorp » Tue Sep 28, 2004 8:50 am
Hello,
cam2pc does not use GDI+ to load JPEG images. It uses its own internal stuff based on the jpeg library of the Independent JPEG Group. Therefore there is no hurry to update the GDI+ DLL used by cam2pc.
Regards,
nabocorp
cam2pc does not use GDI+ to load JPEG images. It uses its own internal stuff based on the jpeg library of the Independent JPEG Group. Therefore there is no hurry to update the GDI+ DLL used by cam2pc.
Regards,
nabocorp
- nabocorp
- Site Admin
- Posts: 627
- Joined: Thu Nov 07, 2002 6:46 pm
by nabocorp » Tue Sep 28, 2004 3:28 pm
FYI, I tried to load this sample virus image (http://www.easynews.com/virus.html) in cam2pc and cam2pc simply fails to load it and does not trigger any action of the virus.
Regards,
nabocorp
Regards,
nabocorp
- nabocorp
- Site Admin
- Posts: 627
- Joined: Thu Nov 07, 2002 6:46 pm
by nabocorp » Tue Sep 28, 2004 3:45 pm
Finally,
if you still fear to be the target of the exploit you can download this version of the GDIPLUS.DLL file that seems to work fine with cam2pc. I have only tested it for a few minutes so you'd better backup the original GDIPLUS.DLL file in case something goes wrong. Just save this file in the installation dir of cam2pc, usually C:\Program Files\cam2pc.
http://www.nabocorp.com/cam2pc/gdiplus.dll
Regards,
nabocorp
if you still fear to be the target of the exploit you can download this version of the GDIPLUS.DLL file that seems to work fine with cam2pc. I have only tested it for a few minutes so you'd better backup the original GDIPLUS.DLL file in case something goes wrong. Just save this file in the installation dir of cam2pc, usually C:\Program Files\cam2pc.
http://www.nabocorp.com/cam2pc/gdiplus.dll
Regards,
nabocorp
- nabocorp
- Site Admin
- Posts: 627
- Joined: Thu Nov 07, 2002 6:46 pm
by GGerrits » Tue Sep 28, 2004 3:50 pm
Hi,
my SysAdmin at work (which started this discussion at the first place, security policies etc.) advised me just to rename the current gdiplus.dll and plain copy the new gdipluss.dll (Ver.5.1.3102.1360) into the cam2pc directory and try running cam2pc. Works fine for me (so far I have tested).
Of course you are in a very different position. As a good SW-manufacturer I also wouldnot replace dlls without making sure that really everything is still OK. Writing software is much more fun than battling hotline calls or even angry customer lawyers :wink:
Keep up the good work, your cam2pc SW is great :D
Best regards,
Guus Gerrits
my SysAdmin at work (which started this discussion at the first place, security policies etc.) advised me just to rename the current gdiplus.dll and plain copy the new gdipluss.dll (Ver.5.1.3102.1360) into the cam2pc directory and try running cam2pc. Works fine for me (so far I have tested).
Of course you are in a very different position. As a good SW-manufacturer I also wouldnot replace dlls without making sure that really everything is still OK. Writing software is much more fun than battling hotline calls or even angry customer lawyers :wink:
Keep up the good work, your cam2pc SW is great :D
Best regards,
Guus Gerrits
- GGerrits
- Posts: 2
- Joined: Tue Sep 28, 2004 7:20 am
- Location: Griesheim (D)
8 posts
• Page 1 of 1
Who is online
Users browsing this forum: No registered users and 53 guests