Whops, sorry, i've just read the iDEFENSE statement
Quote:
Although simple modification of an import library name is sufficient to
exploit this vulnerability, the Windows loader will fail to recognize it
as a valid PE file. This will result in a non-executable malicious
binary.
|
Next time i'll read further.