Secure Coding mailing list archives
State Department break-in last summer
From: fw at deneb.enyo.de (Florian Weimer)
Date: Fri, 20 Apr 2007 21:41:48 +0200
* Nick FitzGerald:
You -- and all journalistic and other commentaries I've seen/heard on the increasingly common use of these targetted Office exploits -- miss one very important option, I think; the attacker has access to (partial) source of the closed, supposedly closely-held, proprietary software in question.
<http://www.microsoft.com/presspass/press/2004/sep04/09-19OfficeGSPPR.mspx> I would expect that various universities have got access to the source code as well, and several companies. The times when you couldn't get source code for proprietary, off-the-shelf software are over. Welcome to the new world order! 8-)
Current thread:
- State Department break-in last summer Ed Reed (Apr 19)
- <Possible follow-ups>
- State Department break-in last summer Nick FitzGerald (Apr 19)
- State Department break-in last summer Florian Weimer (Apr 20)