|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: Andrew Farmer (andfarm
gmail.com)
Date: Sat Sep 29 2007 - 18:32:52 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
On 28 Sep 07, at 19:25, wac wrote:
> On 9/28/07, Jimby Sharp <jimbysharpgmail.com> wrote:
>> How is this serious and is it related to security in any manner? If
>> not, please do not spam. :-(
>
> Many bugs are security related (I would say all). How it is security
> related? Think. What happens if your bank calculates something
> wrong and
> puts the lower in your account and the higher in another account?
> Yes It
> might be little but what about a little many
> times? That could be done with javascript too. Then... you are not
> safe
> anymore.
If your bank is doing financial calculations using Javascript in a
standard web browser, you have bigger things to worry about than
roundoff errors.
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]