BugTraq
Back to list
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
Re: DJB's students release 44 *nix software vulnerability advisories
Dec 21 2004 08:34PM
milw0rm Inc. (milw0rm gmail com)
/*
Two points.
Regarding local versus remote, look at it this way: You have a 100%
secure system. Then you install NASM. Now a user FROM THE NETWORK can
send you some tainted assembly code for you to assemble and he can
compromise your account.
*/
quote "for you to assemble"
Its a user error....
[ more ]
Privacy Statement
Copyright 2010, SecurityFocus
Two points.
Regarding local versus remote, look at it this way: You have a 100%
secure system. Then you install NASM. Now a user FROM THE NETWORK can
send you some tainted assembly code for you to assemble and he can
compromise your account.
*/
quote "for you to assemble"
Its a user error....
[ more ]