|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: [Dailydave] Lynn / Cisco shellcode
From: Francisco Amato (famato
infobyte.com.ar)
Date: Thu Jul 28 2005 - 07:50:19 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
http://www.securityfocus.com/news/11259
On 7/28/05, Halvar Flake <HalVargmx.de> wrote:
I was in transit the last 20 hours, can someone give me a summary
of what happened ?
> --- Ursprüngliche Nachricht ---
> Von: "Andrew R. Reiter" <arrwatson.org>
> An: dangeer.org
> Kopie: dailydavelists.immunitysec.com
> Betreff: Re: [Dailydave] Lynn / Cisco shellcode
> Datum: Thu, 28 Jul 2005 03:57:21 -0400 (EDT)
>
>
> On Wed, 27 Jul 2005 dangeer.org wrote:
>
> :
> :Surely someone on this list has something
> :to say about the Lynn / Cisco shellcode
> :item...
> :
> :--dan
>
> In all honesty, most of the stuff is not new, in my opinion. The big
> thing of interest, to me, was that he was able to "put it all together."
> Like, the idea of overwriting heap management pointers/values is not a new
> idea, but how he figured out about the idle process that does process heap
> pointer "validation" _WAS_ interesting to me. That was the key, for me,
> in realizing what was really needed to go from "hrm... there's a bug, but
> I can't get things to work" to realizing "ah, there's something there that
> does another check, so we need to do more work to deal with getting around
> it."
>
> The talk, I felt, was mediocre soley b/c of the hype re: lawsuits... and
> the played out nature of the "so sue me" joke. I did enjoy it however and
> I think Cisco is way overreacting (as is ISS). I also feel that BlackHat
> (Inc?) is extremely lame with regards to how they handled the situation...
> VERY LAME. What about the Checkpoint vulnerabilities from humble, song,
> et al... a few years ago? Where was the law suits?
>
> So, I say "Good work, Mike."
>
> Cheers,
> Andrew
>
> --
> Andrew R. Reiter
> arrwatson.org
> _______________________________________________
> Dailydave mailing list
> Dailydavelists.immunitysec.com
> https://lists.immunitysec.com/mailman/listinfo/dailydave
>
--
GMX DSL = Maximale Leistung zum minimalen Preis!
2000 MB nur 2,99, Flatrate ab 4,99 Euro/Monat: http://www.gmx.net/de/go/dsl
_______________________________________________
Dailydave mailing list
Dailydavelists.immunitysec.com
https://lists.immunitysec.com/mailman/listinfo/dailydave
_______________________________________________
Dailydave mailing list
Dailydavelists.immunitysec.com
https://lists.immunitysec.com/mailman/listinfo/dailydave
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]