Full Disclosure: Re: Month of ActiveX Bug

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Full Disclosure mailing list archives

Re: Month of ActiveX Bug

From: "Larry Seltzer" <Larry () larryseltzer com>
Date: Tue, 1 May 2007 12:24:47 -0400

Consider that most often a bug filed as DOS can actually be

exploitable, but the person who discovered it can't get the POC working
or is even aware it is. While command execution is the ideal goal it
doesn't mean other types of issues are *completely* worthless.   

Most often? How do you know that?

Larry Seltzer
eWEEK.com Security Center Editor
http://security.eweek.com/
http://blogs.eweek.com/cheap_hack/
Contributing Editor, PC Magazine
larryseltzer () ziffdavis com 

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

By Date By Thread

Current thread:

Month of ActiveX Bug xxx xxx (May 01)
- Re: Month of ActiveX Bug Larry Seltzer (May 01)
  - Re: Month of ActiveX Bug bugtraq (May 01)
    - Re: Month of ActiveX Bug Larry Seltzer (May 01)
    - Re: Month of ActiveX Bug Valdis . Kletnieks (May 01)
    - Re: Month of ActiveX Bug Larry Seltzer (May 01)
    - Re: Month of ActiveX Bug bugtraq (May 01)
    - Re: Month of ActiveX Bug Steven Adair (May 01)
    - Re: Month of ActiveX Bug James Matthews (May 01)