Hi there!

[Dave Aitel <dave () immunitysec com>]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Long time no post - I've been busy cranking out invoices and doing
paperwork and other truly exciting things! Immunity is getting audited
by the ny workers compensation insurance fund, for example. You can
imagine how much I'm looking forward to that meeting! :>

Cansecwest is this week - and has an exceptionally strong lineup!
Unfortunately I'll be teaching a Windows Exploitation class instead of
going to CanSecWest like every other person I know. If I was going,
I'd definately be looking forward to Oded Horovitz's talk. So if
you're going, don't miss it. All those bugs that Microsoft has listed
as: "Most likely a DoS". Hahahahah. ;> Say hi to Justine while you're
there, too.

So 2 things on the eEye bugs:
1. The LSASS bug is not ascii for XP, it's always unicode (although
not in a bad way - w0rd).
2. You can pretty much cause any Win32 server to fill up its memory
with enough connections. And I'm fairly sure they haven't fixed the
netbios memory leak yet as well, although I haven't tested for 2 SPIKE
revisions.

Gotta run! I'll be in New Orleans for a few nights if you want to look
me up. As usually, my phone number is on the Immunity web page.

Dave Aitel
Immunity, Inc.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFAhWJDzOrqAtg8JS8RAu/OAJ9wC+nQQPmrJALtdHRYLKWDgEk45gCg7E7H
i2ynAlAILY0A0JCR6tHSrXE=
=kcS4
-----END PGP SIGNATURE-----

_______________________________________________
Dailydave mailing list
Dailydave () lists immunitysec com
http://www.immunitysec.com/mailman/listinfo/dailydave