lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Message-ID: <oprwxcimlkq1jf6f@mail.ysgnet.com>
From: npguy at ysgnet.com (npguy)
Subject: Local DoS in windows. 

shamefully it happen with my xp running in 128 mb ram pc whereas another 
which has enough ram, has not shown this problem.

On Sat, 11 Oct 2003 21:05:29 -0400, <Valdis.Kletnieks@...edu> wrote:

> On Sun, 12 Oct 2003 02:18:16 +0200, Richard Spiers <dksaarth@...x.za.net> 
> said:
>> whoopee!. Bleh. Really a security issue? Same thing happens if you have 
>> show
>> windows content enabled and you drag around a window, as long as your
>> dragging the window, the cpu will remain close to 100 % usage. 
>> Significant?
>
> Probably not directly, but possibly indirectly.
>
> The questions are, of course:
>
> 1) Is the 100% cycle sucking done as a pre-emptible thing, or can you
> cpu-starve something else using it?
>
> 2) Is there some *other* security-related API that botches incorrectly if 
> it's
> cpu-starved?
>
>> No, unless its proof of some shoddy coding of some-sort.
>
> A hammer is a useful tool for finding  non-impact-resistant screws......
>



-- 
Using M2, Opera's revolutionary e-mail client: http://www.opera.com/m2/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ