Linked by Amjith Ramanujam on Fri 8th Aug 2008 13:14 UTC
Windows This week at the Black Hat Security Conference two security researchers will discuss their findings which could completely bring Windows Vista to its knees. According to Dino Dai Zovi, a popular security researcher, "the genius of this is that it's completely reusable. They have attacks that let them load chosen content to a chosen location with chosen permissions. That's completely game over."
Permalink for comment 326329
To read all comments associated with this story, please click here.
RE[2]: Summary of "exploit"
by vaette on Sat 9th Aug 2008 21:12 UTC in reply to "RE: Summary of "exploit""
vaette
Member since:
2008-08-09

IE is not the problem, not only will the same techniques work against Firefox, Opera and Safari, they will if anything work better as those don't present the additional hurdle of the IE UAC sandbox.

This has nothing to do with ActiveX, any other plugin architecture would be just as problematic. Being able to fool .NET to not run with a poor DEP setup with a specially crafted header is a problem (probably a bug) though, true enough. Still, as Flash and Java never sets up secure page settings it doesn't really make much difference for now.

Reply Parent Score: 1