Feds, Industry, Battle the Biggest Bug

Feds, Industry, Battle the Biggest Bug
Kevin Poulsen, SecurityFocus 2002-06-12

A security hole in implementations of Abstract Syntax Notation One may threaten some of America's most crucial networks. Relax, the President's been briefed.

Colapse all | Post comment

Feds, Industry, Battle the Biggest Bug 2002-06-12
Anonymous (1 replies)

"throws up a small barrier" indeed!! I would love to hear how you plan to get a message on an SS7 network....

[ more ] [ reply ]

Feds, Industry, Battle the Biggest Bug 2002-06-19
Anonymous

Use an SS7 gateway such as the Nortel CSG. It runs on HP-UX, can be managed by SNMP (oh the irony!) and is very rarely secured in any way shape or form.

Incidentally, mobile billing information is stored in ASN.1 format, and usually transferred via FTP. It would be interesting to see if it's poss...

[ more ] [ reply ]

Feds, Industry, Battle the Biggest Bug 2002-06-13
Anonymous

hahaha a MS "security" guy helping US to beef up their cyber security ... nice!...

[ more ] [ reply ]

Feds, Industry, Battle the Biggest Bug 2002-06-19
MKobar (at) Lymeware (dot) com [email concealed]

The real threat here is to anything that processes security tokens (X.509 Certificates, DER keys, and CRLs) and this list includes all SSH & TLS enabled products (including mail clients and servers, browsers, web servers, ftp clients and servers, ssh clients and servers, PGP, GPG, and several other ...

[ more ] [ reply ]

Feds, Industry, Battle the Biggest Bug 2009-08-07
Anonymous

The concept of thinking globally instead of nationally is exemplified by the Finish University's excellent work. Ethics in the relationship between governmental, corporate, and academic institutions must rationalize the distinction between engineering capability, and dire human need, and raise the l...

[ more ] [ reply ]

Feds, Industry, Battle the Biggest Bug 2009-08-07
Anonymous

Some postings matter long after the fixes have been implemented....

[ more ] [ reply ]