Quote:
|
Originally Posted by photon
One has to wonder when a 3rd party without access to the source code releases a patch days before the software vendor does...
Microsoft has made strides this year for security, but they aren't there yet.
|
From the .WMF HotFix FAQ Site
Quote:
What does the WMF Hotfix do?
The hotfix DLL patches the Escape() function in gdi32.dll and makes SETABORT escape sequence invalid. The hotfix removes this function only in memory, it makes no changes to the filesystem.
|
So, the hot fix will just hook the gdi32.dll and make that function invalid. Fairly basic routine if you don't have the source code available, but need to make changes during the execution of the program.
I used to have a program that would convert a binary exe close to C code that would allow you to step through the code. It was pretty cool. And is a basic tool if you wanted to find the functions, and create a hook for a dll.