Shirkdog's blog
RHEL CVE Database
Submitted by Shirkdog on Tue, 2012-02-21 11:27Have you ever had to perform a C&A for a system that uses RHEL? Well Redhat has made available a webpage to easily search for CVE's without any additional effort:
MS12-013 PoC with write-up
Submitted by Shirkdog on Wed, 2012-02-15 14:19Byoungyoung Lee provides a PoC with additional information based on the interpretation of this bug by the Microsoft Security Research Center (MSRC)
MS12-013: Vulnerability in C Run-Time Library could allow remote code execution
Nessus 5.0 Released by Tenable Network Security
Submitted by Shirkdog on Wed, 2012-02-15 12:43For those of you that like use Nessus for vulnerability management:
The new version of Nessus incorporates the following key features and updates:
Nortel Networks pwn3d for an entire decade
Submitted by Shirkdog on Tue, 2012-02-14 13:59You would think being in there for almost 10 years they might have made changes to make the network better for their access.
The dangers of backwards thinking on software security
Submitted by Shirkdog on Fri, 2012-02-10 13:12I noticed the following story today:
Offensive security research community helping bad guys
Starting with this quote from Adobe Security Chief Brad Arkin:
"We are involved in a cat-and-mouse game on [the software] engineering side. Every time we come up with something new and build new defenses, it creates incentive for the bad guy to look beyond that."
Climate Change and Information Assurance -- and how they are bullshit
Submitted by Shirkdog on Sat, 2010-05-08 17:09In the course of presenting any form of analysis or research, the details of how you come to your conclusions must be indisputable. The scrutiny faced by your peers should be enough to validate your claims as being reasonable before presenting them in any forum.
But this is not always the case in the lives of professionals, as notoriety can blind the path of virtue. How many of us would trade an honest position, to present an idea that is based on falsehoods, or is an evasion of the truth, to make more money, or gain the spotlight?
Here enters, global warming.
Funny Vulnerability Disclosure
Submitted by Shirkdog on Tue, 2009-06-16 12:44There are a number of things to laugh at in this vulnerability disclosure, beyond the bug itself.
Thierry Zoller notified Apple to resolve this issue, but things were never handled correctly. Along the way, Apple sent a message, encrypted with their own public key to Zoller, which was worth a lulz.
Advisory: Apple Safari & Quicktime DoS
DX Studio Player Firefox plug-in command injection -- Complete with built-in Shell command
Submitted by Shirkdog on Thu, 2009-06-11 10:51Nothing like having the API do the work for you:
shell.execute("cmd.exe","/k cls|@echo this is wrong, very wrong.")
[Core Security Advisory]
Why CISSP's are ruining security - An interesting parallel to MCSE's ruining Information Technology
Submitted by Shirkdog on Tue, 2009-06-09 10:56It is just one of those things, that eventually happens, but I want to take everyone back to 1999/2000. You have the Y2K bug, so people were focused on this as it affected applications in their enterprises. But after this paranoid (Black Sabbath reference, and not a misspelling of paranoia) subsided, I began to see advertisements, and hear about Microsoft Certified Training. I was working in a help-desk at the time and several of my co-workers actually had this MCSE in Windows NT. Windows 2000 ... was released and now all of them had to upgrade their certification and retake the test.
