[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
From: Valdis.Kletnieks at vt.edu (Valdis.Kletnieks@...edu)
Subject: sco.com Press Release
On Mon, 02 Feb 2004 11:57:14 EST, Lennart Damm <lennart.damm@...ite.com> said:
> The MyDoom author should be an asset to any security company fighting this
> kind of attacks. Or maybe he already is. I would not hesitate employing him to
> do the analysis and synthesis of the obvious 3G vulnerabilities built into
> UMTS, etc. Approaching 1 billion cell phone users there will be a new risk
> landscape - much more demanding than the current one.
This would be true if MyDoom showed any really creative innovation, like
abusing a as-yet-generally-unknown 0day, or some novel approach to finding
ways into a system.
If I was looking for holes, I'd pass on the MyDoom author and find out
what Lie Die Yu was doing - the kind of thinking that went into the
"Sis Step IE Remote Compromise Cache Attack" is what you want on your side.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 226 bytes
Desc: not available
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20040202/5bc6bec9/attachment.bin
Powered by blists - more mailing lists