DimJim - Slashdot User

New Hack Exploits Common Programming Error 255

Posted by ScuttleMonkey on Monday July 23 2007, @01:27PM
from the gibson-unavailable-for-comment dept.

buzzardsbay writes "TechTarget's security editor, Dennis Fisher is reporting that researchers at Watchfire Inc. have discovered a reliable method for exploiting a common programming error, which until now had been considered simply a quality problem and not a security vulnerability. According to the article, the researchers stumbled upon the method for remotely exploiting dangling pointers by chance while they were running the company's AppScan software against a Web server. The good folks at Watchfire will detail the technique in a presentation at the Black Hat Briefings in Las Vegas in August, Fisher writes."

Comment: Re:Dibs 2.0 (Score 1) 229

by DimJim on Friday May 26 2006, @02:37PM (#15411356) Attached to: O'Reilly and CMP Exercise Trademark on 'Web 2.0'

Finite or infinite, that is the question.

Webinfinity seems to be free.

http://www.webinfinity.com.au/