-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Just stumbled upon this today.

Apparently someone has found what sounds to be a rather SERIOUS
security vulnerability in WinPCap's kernel device driver:


http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=5
50


WinPCap doesn't even mention it on their main web page either!
Instead, they bury it on their "News" page:


http://www.winpcap.org/news.htm


3 July, 2007

"As of today, WinPcap 4.0.1 is available in the download
section of the WinPcap website."

"This maintenance release addresses a security vulnerability
reported by the iDefense Labs in this advisory. Full details
can be found in the change log."



It is STRONGLY SUGGESTED that all users of WinPCap (which means all
users of CTCI-W32!) upgrade to WinPCap 4.0.1 immediately. Even though
the vulnerability itself is not remotely exploitable, since it allows
the exploit code to run in kernel context it is thus extremely
serious in my humble opinion.


Please everyone, make sure you take care of this issue ASAP.


Thanks.

- --
"Fish" (David B. Trout) - fish(at)infidels.org
Fight Spam! Join CAUCE! <http://www.cauce.org/>
(Any HTML email received will be deleted unread)
PGP key fingerprints:
DH/DSS: 9F9B BAB0 BA7F C458 1A89 FE26 48F5 D7F4 C4EE 3E2A
RSA: 6B37 7110 7201 9917 9B0D 99E3 55DB 5D58 FADE 4A52

-----BEGIN PGP SIGNATURE-----
Version: PGP 8.1

iQA/AwUBRpzu/Ej11/TE7j4qEQLxWACgrDeXhlACwSbWQFYHMg++iuExSMwAnR2Z
naZeDhFlRzSYi4eLfWdtXxNK
=LmRr
-----END PGP SIGNATURE-----