Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Security-Basics
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Java based vulnerabilities

from [infolookup] Network Security [Permanent Link]
Subject: Re: Java based vulnerabilities
Date: Wed, 16 Apr 2008 21:34:19 +0000 
You might want to check out HP's SPI section on there website, or shmooncon 
2007 video's, Billy did a nice presentation on all the hacks one can accomplish 
with java but also mentioned a few counter defenses, if I find a link I will 
send it to you.
Sent from my Verizon Wireless BlackBerry

-----Original Message-----
From: "Albert R. Campa" <abcampa@gmail.com>

Date: Wed, 16 Apr 2008 15:12:35 
To:security-basics <security-basics@securityfocus.com>
Subject: Java based vulnerabilities


I am wondering what the common protection for java vulnerabilities are.

Seems like upgrading to latest java version breaks ability to access
older or even current web consoles for varying products. Everyone is
scared to upgrade java because apps arent compatible with newer
version.

Do we just not upgrade and watch vulnerabilities popup or upgrade and
peeve off the customer? ha

Thanks for your input

Albert
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Thoughts on CAPTCHA, Ali, Saqib
Next by Date:  Tunnel DNS queries, secrookie@gmail.com
Previous by Thread:  Java based vulnerabilities, Albert R. Campa
Next by Thread:  Re: Java based vulnerabilities, Florencio Cano
Indexes:  [Date] [Thread] [Top] [All Lists]