[Fed-Talk] Re: Fed-talk Digest, Vol 5, Issue 234
[Fed-Talk] Re: Fed-talk Digest, Vol 5, Issue 234
- Subject: [Fed-Talk] Re: Fed-talk Digest, Vol 5, Issue 234
- From: Jason Levine <email@hidden>
- Date: Mon, 11 Aug 2008 09:55:42 -0400
- Thread-topic: Fed-talk Digest, Vol 5, Issue 234
Ummmm -- not exactly true, Michael. If you read the coverage of the
exploit, you'll see that what was uncovered is a very, VERY vicious Flash
vulnerability that is likely to work on *ANY* platform on which Flash runs;
what was shown at BlackHat was specifically a demonstration of how it allows
someone to defeat Vista's ASLR (Address Space Layout Randomication), but
again, the core of the exploit isn't platform-specific. (Your own article
states this, essentially: "Dai Zovi stressed that the techniques Dowd and
Sotirov use do not rely on specific vulnerabilities. As a result, he said,
there may soon be similar techniques applied to other platforms or
environments.")
For more details, see (all URLs shortened for email ease):
* a nice summary of the exploit by P2PNet: http://url.queso.org/222
* Matasano Chargen's (typically) excellent recap: http://url.queso.org/219
(Matasano server appears to be horked this AM, so cached version available
via Google here: http://url.queso.org/220)
* Bruce Dowd's own detailed writeup of the vulnerability (PDF file,
http://url.queso.org/221)
Also of note (to me, at least) is that the reason this allows circumvention
of Vista's ASLR is because Vista doesn't mandate that all apps *use* ASLR,
and Adobe doesn't take advantage of the extra protection with Flash. So
despite what a lot of articles are reporting, ASLR hasn't been hacked, but
rather, Vista allows apps to decide whether they'll even *use* ASLR, and if
a hackable app doesn't use it, it's game over.
Jason
> Date: Fri, 08 Aug 2008 15:34:34 -0400
> From: Michael Chute <email@hidden>
> Subject: [Fed-Talk] Re: Fed-talk Digest, Vol 5, Issue 234
> Message-ID: <C4C2180A.EEE5%email@hidden>
>
> Apple may not have patched all the DNS problems, but at least they don't
> have this problem:
>
>
<http://searchsecurity.techtarget.com/news/article/0,289142,sid14_gci1324395,00.
html>
>
> M.
> Michael D. Chute
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden