Dailydave mailing list archives
RE: Re[4]: ASN.1 Vulnerability Could Allow CodeExecution(828028); Microsoft Security Bulletin MS04-007
From: john blumenthal <jblumen () xmission com>
Date: Sun, 15 Feb 2004 09:25:47 -0700
I sat on a flight back to the U.S. the other day next to Matthias Troyer, a professor leading the computational physics department at the Institut fuer Theoretische Physik in Zuerich (http://www.itp.phys.ethz.ch/compphys/). Most of the flight he hacked on a cpp application while documenting additions to the Eigenproblem template library his team maintains. We chatted about the app. Turns out that 95% of his time is spent on pre-processing result sets from quantum collisons looking for something interesting. His applications employ a ranking system to determine or to guide a researcher deeper into the result set or cause them to move on to another. The analogy to greybox testing struck me: NP-complete or NP-hard and parallelizeable? Anyone on this list with a background in computational physics? -----Original Message----- From: dailydave-bounces () lists immunitysec com [mailto:dailydave-bounces () lists immunitysec com]On Behalf Of Halvar Flake Sent: Thursday, February 12, 2004 1:08 AM To: Brett Moore Cc: dailydave () lists immunitysec com Subject: Re[4]: [Dailydave] ASN.1 Vulnerability Could Allow CodeExecution(828028); Microsoft Security Bulletin MS04-007 Hey Brett, BM> Of course reverse enginerring all the dlls/functions and reviewing the code BM> while been extremely time cosuming, could turn up gold... Perhaps its just BM> a matter of knowing 'where to look'.... Perhabs we need a better approach to know on what to focus. Perhabs "ranking" DLL's by importance wouldn't be a bad idea (importance being the number of applications using the DLL and passing user data into it... LZ32.DLL anyone ?), then taking the most important DLL and auditing it first. The pleasures of modularisation and code reuse. Anyhow, I _really_ should get back to my studies :) Cheers, Halvar _______________________________________________ Dailydave mailing list Dailydave () lists immunitysec com http://www.immunitysec.com/mailman/listinfo/dailydave _______________________________________________ Dailydave mailing list Dailydave () lists immunitysec com http://www.immunitysec.com/mailman/listinfo/dailydave
Current thread:
- ASN.1 Vulnerability Could Allow Code Execution (828028); Microsoft Security Bulletin MS04-007 Bradley, Terry (CONTR) (Feb 11)
- Re: ASN.1 Vulnerability Could Allow Code Execution (828028); Microsoft Security Bulletin MS04-007 Dave Aitel (Feb 11)
- Re: ASN.1 Vulnerability Could Allow Code Execution (828028); Microsoft Security Bulletin MS04-007 Nicob (Feb 11)
- Re[2]: ASN.1 Vulnerability Could Allow Code Execution (828028); Microsoft Security Bulletin MS04-007 Halvar Flake (Feb 11)
- RE: Re[2]: ASN.1 Vulnerability Could Allow Code Execution(828028); Microsoft Security Bulletin MS04-007 Brett Moore (Feb 11)
- Re[4]: ASN.1 Vulnerability Could Allow Code Execution(828028); Microsoft Security Bulletin MS04-007 Halvar Flake (Feb 12)
- RE: Re[4]: ASN.1 Vulnerability Could Allow CodeExecution(828028); Microsoft Security Bulletin MS04-007 john blumenthal (Feb 15)
- Re: ASN.1 Vulnerability Could Allow Code Execution (828028); Microsoft Security Bulletin MS04-007 Nicob (Feb 11)
- Re: Re[2]: ASN.1 Vulnerability Could Allow Code Execution(828028); Microsoft Security Bulletin MS04-007 Matt Hargett (Feb 11)
- Re: ASN.1 Vulnerability Could Allow Code Execution (828028); Microsoft Security Bulletin MS04-007 Dave Aitel (Feb 11)