Home page logo
/

fulldisclosure logo Full Disclosure mailing list archives

Re: Apple Safari 4 Beta feeds: URI NULL Pointer Dereference Denial of, Service Vulnerability
From: bob jones <bholdaaa () gmail com>
Date: Fri, 27 Feb 2009 00:04:50 -0600

http://uninformed.org/?v=4&a=5&t=sumry

On Thu, Feb 26, 2009 at 10:19 PM, Jubei Trippataka
<vpn.1.fanatic () gmail com>wrote:




I'll clarify for everyone since you seem lost.
EVERYONE, THE NULL POINTER DOES NOT GET DEREFERENCED. It only
gets referenced. And Jubei isn't even sure a null pointer is involved
at all =)

With that out of the way, I'd just like to say that I only meant to
encourage people to check out an excellent paper. I didn't mean to say
anything related to your argument other than to say that that
paper is a must-read. If you can't appreciate that, why the fuck are you
on F-D? Think about it.



I'm didn't even comment on Mark's paper, it is definitely a great piece of
research, there is no doubt. It's just that some people have read this paper
and thought, wow, all those NULL bugs are now exploitable. It's important to
separate these bug classes.

I'd even go to say that while this paper is a must-read, please also spend
some time understanding it, otherwise don't bother.

--
ciao

JT

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault