| How is this stuff found? Reading about one of the vulnerabilities, I'm interested to know how these vulnerabilities are discovered. There are obviously hackers/crackers and researchers alike that spend every waking hour trying to identify vulnerabilities, but exactly how is it done? Most specifically, this exploit regarding the "MessageBox" function:
»www.darkreading.com/document.asp···d=113414
How on earth is this found? |
|
|
|
 John_WPremium
join:2000-04-25
Worcester, MA | It's the black hats we have to worry about.
It's the white hats MS has to worry about. It's how quickly the software companies respond to the white hat vulnerability discoveries that concern us.
Almost all, if not all, software has some sort of exploitable code in it. It is just how fast those companies fix the problem that makes the difference between a good and bad company. MS has had a habit of ignoring white hat findings, or at best putting off, where other software companies, like mozilla, who who get their patches right out there as soon as they can.
--
Chef says to put a cucumber down my pants for good luck. |
|
| didn't answer the question! |
|
 72276539Premium
join:2001-01-19
Atlanta, GA
1 edit | reply to John_W
said by John_W: MS has had a habit of ignoring white hat findings, or at best putting off, where other software companies, like mozilla, who who get their patches right out there as soon as they can. It's a hell of a lot fuckin easier to edit code on a browser then an entire OS. How bout comparing apples to apples instead of apples to porcupines.
PS- Answer the OP's question while you are at it.
--
RIP Dimebag- August 20, 1966 to December 8th, 2004. |
|
| reply to rdmiller
Black hats harm everybody by destroying stuff. The white hats either do something that is unimportant to you or something that is highly desirable to you but highly undesirable to Microsoft. For example, if a white hat found out a way to permanently disable the signed driver protection in Vista, that would be wonderful for everyone in the world except for Microsoft who's sole purpose for that feature is to prevent you and me from modifying the system to our advantage. Noone wants that except for Microsoft. |
|
 Hi
@comcast.net | reply to bleearg13
For buffer overflows, you can just try dumping a long, long string of data into every function that takes strings of data and see which ones crash.
If a long, long string of data causes your OS to crash (in one way or another, not necessarily requiring a complete reboot), then you've overwritten something and maybe you can use this to your advantage to overwrite executable code. |
|
