:: Re: [DNG] VBScript Injection via GN…
Top Page
This message is part of the following thread:
M++----\the complete thread tree sorted by date
MMM-+-\M\Joachim Fahrner at <-
..M\M\MMMRick Moen at ->
Delete this message
Reply to this message
Author: Joachim Fahrner
Date:  
To: dng
Subject: Re: [DNG] VBScript Injection via GNOME Thumbnailer
Am 2017-07-18 09:39, schrieb Rick Moen:
> OTOH, clearly the parser code in /usr/bin/gnome-exe-thumbnailer is
> rubbish, as it shouldn't be possible to fool it into processing
> embedded
> VBSCript in a filename.

That's the point. All these things made by Poettering, Gnome Team, Read
Hat ... are rubbish monsters, too complex to make them safe. They put
all things in they can think of. A thumbnailer that depends on wine!
Unbelievable! That's no good and clean software.

Jochen


This message was posted to the following mailing lists:
dng
Mailing List Info | Nearby Messages		<-Re: [DNG] Sexual politics and society: [was: Forums: was I have a question about libsystemd0 in devuan ascii, ]Re: [DNG] VBScript Injection via GNOME Thumbnailer->

Donate to Dyne.org

dyne.org open discussions
administrated by dyne.org hackers		Lurker (version 2.3)