....
 

Guardian Digital Inc. > InfoCenter > Mailing List Archives > Full Disclosure

Full Disclosure Mailing List Archive

From: Devdas Bhagat (devdas@dvb.homelinux.org)
Date: Fri Dec 24 2004 - 09:11:49 EST


On 22/12/04 14:26 -0600, Todd Towles wrote:
> So now, I just need to trick a user into running a malicious source file
> that I assembed and sent him, this makes it much harder.

<snip nasm vulnerability details>

You need to publish an exploit for nasm and claim it to be the exploit
for something else. This trick has been used here a few times.

Devdas Bhagat
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html



[ About Guardian Digital ] - [ Press Center ] - [ Contact Us ] - [ System Activation ] - [ Reseller Info ] - [ Online Store ] - [ Site Map ]
Copyright (c) 2000 - 2004 Guardian Digital, Inc. Linux Lockbox and EnGarde are Trademarks of Guardian Digital, Inc.