|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Subject: CERT's ActiveX security report
From: Richard M. Smith (rms
PRIVACYFOUNDATION.ORG)Date: Fri Dec 22 2000 - 12:15:21 CST
- Next message: Dan Stromberg: "Re: /tmp"
- Previous message: Juergen P. Meier: "Re: Solaris patchadd(1) (3) symlink vulnerabilty"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Hello,
This past summer, CERT sponsored a two-day workshop on
security issues with ActiveX controls. The
final report was just released today and is
available as a PDF file at the CERT Web site:
http://www.cert.org/reports/activeX_report.pdf
There is a lot of good information in the report about
how individuals and organizations can reduce security
risks in Internet Explorer when using ActiveX controls.
In addition, there is a section aimed at software
developers on how to create safer controls.
A good bit of the technical information in the report
has not been made public before.
Richard
- Next message: Dan Stromberg: "Re: /tmp"
- Previous message: Juergen P. Meier: "Re: Solaris patchadd(1) (3) symlink vulnerabilty"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]