| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Sun, 16 Sep 2007 14:34:32 +0200 From: Thierry Zoller <Thierry@...ler.lu> To: pgut001@...auckland.ac.nz (Peter Gutmann) Cc: webappsec@...urityfocus.com, news@...uriteam.com, vuln-dev@...urityfocus.com, roger@...neretcs.com, full-disclosure@...ts.grok.org.uk, bugtraq@...urityfocus.com Subject: Re: Next generation malware: Windows Vista's gadget API Dear Peter, I have a few questions, maybe you have time to answer them. PG> No, this is an entirely new level of attack, "New level of attack", what makes you believe that? PG> because it's moved the dancing PG> bunnies problem onto the Windows desktop. Huh ? What is different to let's say the southpark worm we saw years ago? Or any other normal binary that promised to be a screensaver or similar ? PG> The level of warnings is PG> irrelevant Euhm ok, so in your logic the program shouldn't run at all ? What do you perceive as "relevant" here. PG> Given what an incredible attack vector they are What is incredible in this attack vector ? What is actually new ? What is the differnce with the "User downloads screensaver and get's owned" attack vector ? PG> I'm amazed there haven't been any serious PG> exploits yet. See Wikipedia definition of exploit : http://en.wikipedia.org/wiki/Exploit_%28computer_security%29 -- http://secdev.zoller.lu Thierry Zoller Fingerprint : 5D84 BFDC CD36 A951 2C45 2E57 28B3 75DD 0AC6 F1C7 _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists