Bugtraq mailing list archives

Re: DJB's students release 44 *nix software vulnerability advisories

From: "milw0rm Inc." <milw0rm () gmail com>
Date: Tue, 21 Dec 2004 14:34:20 -0600

/* 
Two points.
Regarding local versus remote, look at it this way:  You have a 100%
secure system.  Then you install NASM.  Now a user FROM THE NETWORK can
send you some tainted assembly code for you to assemble and he can
compromise your account.
*/ 

quote "for you to assemble"

Its a user error.  Your not remotely exploiting anything but the trust
from the user.

//str0ke

Current thread:

Re: DJB's students release 44 *nix software vulnerability advisories, (continued)
- Re: DJB's students release 44 *nix software vulnerability advisories D. J. Bernstein (Dec 19)
  - Re: DJB's students release 44 *nix software vulnerability advisories Artem Chuprina (Dec 21)
  - Re: DJB's students release 44 *nix software vulnerability advisories Stephen Samuel (Dec 21)
    - Re: DJB's students release 44 *nix software vulnerability advisories D. J. Bernstein (Dec 22)
    - Re: DJB's students release 44 *nix software vulnerability advisories David Eisner (Dec 22)
    - Re: DJB's students release 44 *nix software vulnerability advisories Crispin Cowan (Dec 22)
    - Re: DJB's students release 44 *nix software vulnerability advisories D. J. Bernstein (Dec 23)
    - Re: DJB's students release 44 *nix software vulnerability advisories Crispin Cowan (Dec 24)
    - Message not available
    - Re: DJB's students release 44 *nix software vulnerability advisories Crispin Cowan (Dec 23)
- Re: DJB's students release 44 *nix software vulnerability advisories Jonathan T Rockway (Dec 21)
  - Re: DJB's students release 44 *nix software vulnerability advisories milw0rm Inc. (Dec 21)
    - Re: DJB's students release 44 *nix software vulnerability advisories Antoine Martin (Dec 21)
    - Re: DJB's students release 44 *nix software vulnerability advisories Chris Paget (Dec 22)
    - Re: DJB's students release 44 *nix software vulnerability advisories Jack Lloyd (Dec 22)
  - Re: DJB's students release 44 *nix software vulnerability advisories Dave Holland (Dec 21)
    - Re: DJB's students release 44 *nix software vulnerability advisories sean (Dec 22)
  - Re: DJB's students release 44 *nix software vulnerability advisories Thor (Dec 21)
  - Re: DJB's students release 44 *nix software vulnerability advisories David F. Skoll (Dec 21)
    - Re: DJB's students release 44 *nix software vulnerability advisories Jonathan Rockway (Dec 22)
    - Re: DJB's students release 44 *nix software vulnerability advisories Casper . Dik (Dec 22)
    - Re: DJB's students release 44 *nix software vulnerability advisories Michal Zalewski (Dec 23)

(Thread continues...)