Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Bugtraq
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[Full-Disclosure] To anybody who's offended by my disclosure policy

from [Berend-Jan Wever] Network Security [Permanent Link]
Subject: [Full-Disclosure] To anybody who's offended by my disclosure policy
Date: Thu, 25 Nov 2004 17:51:58 +0100 
I will try to explain this all once again, but only ONCE again:

MSIE IFRAME bufferoverflow:
I did not disclose the vulnerability: I wrote an analysis of a publicly known 
vulnerability. It was a warning that there could be malicious people stealing 
your creditcard details and whatnot with a 0day exploit. Nobody seemed to 
notice... Maybe the advisory was to technical, maybe the vendor didn't want bad 
publicity, I don't know. I figured it was in everybody's interest to make the 
exploit public knowledge so everybody would take notice and could take 
precautions. In that I succeeded. What did I get for all this ? Fame and 
attention.

MSIE nested array sort() loop Stack overflow exception:
People are expecting me to play by their rules but they do not offer me 
anything in return. I've had enough of that, so I decided to release this 
without enough details. Instead of relying on me for information, you now have 
to rely on your vendor. Let's see how long it takes them to come up with an 
analysis. Firefox and Opera just got cought in the crossfire.

My disclosure policy:
Most vendors treat "hackers" like free beta-testers that they can put the blame 
on when publicity goes bad. Mozilla does pay for remotely exploitable 
vulnerabilities. Fact of the matter is I could have released more IE 0day 
exploits if I wanted to, but I've choosen to disclose them responsibly. That 
choice was made a lot easier by iDefense, who do pay people for their time and 
knowledge. I have also found other vulnerabilities in Firefox, but I also 
choose not to disclose them untill I've analysed them and reported them to the 
vendor.

So what do I get for all my time and work ?
- Do I get payed ? No.
- Do I get n00bs trying to flame me ? Yes.
- Do I get attention from people who do know what I am talking about and might 
want to hire me to work for them ? Yes.

Cheers,
SkyLined

PS. Recursive function call will cause stack overflow causing write exception 
in guard page on a push, no control over registers: no exploit.


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  [USN-32-1] mysql vulnerabilities, Martin Pitt
Next by Date:  Re: [Full-Disclosure] Re: Sun Java Plugin arbitrary package access vulnerability, Exchange
Previous by Thread:  [Full-Disclosure] Re: FIREFOX flaws: nested array sort() loop Stack overflow exception, Gadi Evron
Next by Thread:  [Full-Disclosure] Re: To anybody who's offended by my disclosure policy, Gadi Evron
Indexes:  [Date] [Thread] [Top] [All Lists]