Security Holes That Run Deep

Security Holes That Run Deep
Mark Burnett, 2004-12-20

How a seemingly simply Microsoft bug betrayed its author's disdain for a wide range of secure coding principles.

Security Holes That Run Deep 2004-12-23
Anonymous

The design is faulty, or at least the design that states the process runs at such a high privelige level that this sort of thing is possible. There is no need for any application to have direct full access to the system.

When I thought I needed Apache on Unix to run as root, I have to jump throug...

[ more ]