Full Disclosure mailing list archives
Re: The new Microsoft math: 1 patch for 14 vulnerabilities, MS04-011
From: "Geoincidents" <geoincidents () getinfo org>
Date: Wed, 14 Apr 2004 19:41:55 -0400
Exactly the point of full disclosure. If someone with a serious axe to
grind would have stumbled onto the ASN.1 flaw before the Eeye notice, it could have been an ELE* for MS and some major corporations.
Let's see, unpatched ASN.1 + Flash Worm = ?
I think you seriously underestimate the hacking skills of eeye, there are very few who could turn the bugs they find into full blow root level exploits. Geo. _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- RE: The new Microsoft math: 1 patch for 14 vulnerabilities, MS04-011 Burnes, James (Apr 14)
- Re: The new Microsoft math: 1 patch for 14 vulnerabilities, MS04-011 Geoincidents (Apr 14)
- Re: The new Microsoft math: 1 patch for 14 vulnerabilities, MS04-011 Dave Aitel (Apr 14)
- Re: The new Microsoft math: 1 patch for 14 vulnerabilities, MS04-011 Benjamin Meade (Apr 14)
- RE: Risk between discovery and patch (was: The new Microsoft math) Ben Nagy (Apr 15)
- Re: RE: Risk between discovery and patch Dave Aitel (Apr 15)
- Re: The new Microsoft math: 1 patch for 14 vulnerabilities, MS04-011 Dave Aitel (Apr 14)
- Re: The new Microsoft math: 1 patch for 14 vulnerabilities, MS04-011 Geoincidents (Apr 14)
- Re: The new Microsoft math: 1 patch for 14 vulnerabilities, MS04-011 Geoincidents (Apr 14)
- <Possible follow-ups>
- RE: The new Microsoft math: 1 patch for 14 vulnerabilities, MS04-011 Steven M. Christey (Apr 15)