Full Disclosure mailing list archives

Re: Month of ActiveX Bug

From: bugtraq () cgisecurity net
Date: Tue, 1 May 2007 11:47:35 -0400 (EDT)

http://moaxb.blogspot.com/=20

=20
Wow, a DoS in a 3rd-party Poiwerpoint viewer. This ought to bring the
Internet to its knees. I wonder if he'll have any actual ActiveX bugs=
 or
if they'll just be DoS's in controls.


Consider that most often a bug filed as DOS can actually
be exploitable, but the person who discovered it can't get the POC working or is even aware it is. While command 
execution is the ideal goal it doesn't
mean other types of issues are *completely* worthless.  

- Robert
http://www.cgisecurity.com/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Current thread:

Month of ActiveX Bug xxx xxx (May 01)
- Re: Month of ActiveX Bug Larry Seltzer (May 01)
  - Re: Month of ActiveX Bug bugtraq (May 01)
    - Re: Month of ActiveX Bug Larry Seltzer (May 01)
    - Re: Month of ActiveX Bug Valdis . Kletnieks (May 01)
    - Re: Month of ActiveX Bug Larry Seltzer (May 01)
    - Re: Month of ActiveX Bug bugtraq (May 01)
    - Re: Month of ActiveX Bug Steven Adair (May 01)
    - Re: Month of ActiveX Bug James Matthews (May 01)
    - Re: Month of ActiveX Bug Goetz Von Berlichingen (May 06)
- Re: Month of ActiveX Bug Larry Seltzer (May 03)
  - Re: Month of ActiveX Bug Dude VanWinkle (May 03)
    - Re: Month of ActiveX Bug Larry Seltzer (May 03)

(Thread continues...)