Tuesday, October 05, 2004

Worried about Window's GDI+ buffer overflow?

Are you worried about the potential impact of the GDI+ buffer overflow bug? If so download Dynicity's GDIPlus Reporter Utility. This tool shows up issues that the Microsoft provided tool does not. For example, I use Camtasia to record screen demos, and Dynicity's tool found a vulnerable DLL in the camtasia installation folders - one that was not detected by the MS tool.

1 comment:

Andy said...

the sans one at http://isc.sans.org/gdiscan.php is also pretty good. It detects a lot more than the microsoft one, but doesnt just scan for gdi.dll. Will also tell you if the version it found is vulnerable or not.