----- Original Message ----- From: "Ward Taylor" <rfdhomer@windyplains.com> To: <bugtraq@securityfocus.com> Sent: Monday, February 09, 2004 7:31 PM Subject: RE: Round One: "DLL Proxy" Attack Easily Hijacks SSL from Internet Explorer > Hi: > There is a win2k registry setting which allows the default .dll search order > to be changed. Out of curiosity, does that override the 0 byte .exe.local file trick to force the application to search the local directory for the .dll first ? http://www.jsiinc.com/subf/tip2600/rh2606.htm Cheers.
