Full Disclosure: Re: Nmap NOT VULNERABLE to Windows DLL Hijacking Vulnerability

Re: Nmap NOT VULNERABLE to Windows DLL Hijacking Vulnerability

From: "Thor (Hammer of God)" <thor () hammerofgod com>
Date: Sat, 18 Sep 2010 17:15:18 +0000

I'm not sure that I (or other developers for that matter) appreciate being likened to a child with the associated 
innuendo of naiveté and ignorance.  Nor do I think you are qualified to make the assumption that MSFT is acting as my 
"parent" and that API calls are "grenades."  It's a documented API and is accompanied with clear security warnings.  

If you wish to engage in hyperbole, why not email God and ask him why Deadly Nightshade didn't come with warnings 
pre-printed on the leaves and why poison oak didn't grow with a "don't wipe your butt with this while camping" 
disclaimer?

APIs are APIs.  Pomegranates are Pomegranates.   It's people with mindsets like yours that turn "grenates" into 
grenades.  

t

-----Original Message-----
From: full-disclosure-bounces () lists grok org uk [mailto:full-disclosure-
bounces () lists grok org uk] On Behalf Of Pavel Kankovsky
Sent: Saturday, September 18, 2010 9:21 AM
To: full-disclosure () lists grok org uk
Subject: Re: [Full-disclosure] Nmap NOT VULNERABLE to Windows DLL
Hijacking Vulnerability

On Wed, 8 Sep 2010, jf wrote:

I still don't see how this is really MSFTs fault. I mean, there's
defined APIs for getting the version, theres a fairly clear warning on
MSDN for LoadLibrary & SearchPath; isn't this akin to blaming the OS
vendor for the app vendor improperly using strcpy?


Providing a very dangerous API to developers and advising them to avoid the
most straightforward way of using it is like giving a hand grenade to kids and
advising them to be very careful when they play with it.

--
Pavel Kankovsky aka Peak                          / Jeremiah 9:21        \
"For death is come up into our MS Windows(tm)..." \ 21st century edition /

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

By Date By Thread

Current thread:

nmap <= 5.21 is vulnerable to Windows DLL Hijacking Vulnerability. Nikhil Mittal (Sep 06)
- Re: Nmap NOT VULNERABLE to Windows DLL Hijacking Vulnerability Fyodor (Sep 08)
  - Re: Nmap NOT VULNERABLE to Windows DLL Hijacking Vulnerability paul . szabo (Sep 08)
    - Re: Nmap NOT VULNERABLE to Windows DLL Hijacking Vulnerability jf (Sep 09)
    - Re: Nmap NOT VULNERABLE to Windows DLL Hijacking Vulnerability paul . szabo (Sep 09)
    - Re: Nmap NOT VULNERABLE to Windows DLL Hijacking Vulnerability Rohit Patnaik (Sep 09)
    - Re: Nmap NOT VULNERABLE to Windows DLL Hijacking Vulnerability jf (Sep 09)
    - Re: Nmap NOT VULNERABLE to Windows DLL Hijacking Vulnerability paul . szabo (Sep 09)
    - Re: Nmap NOT VULNERABLE to Windows DLL Hijacking Vulnerability Pavel Kankovsky (Sep 18)
    - Re: Nmap NOT VULNERABLE to Windows DLL Hijacking Vulnerability Thor (Hammer of God) (Sep 18)
    - Re: Nmap NOT VULNERABLE to Windows DLL HijackingVulnerability Stefan Kanthak (Sep 14)