In October of 2006, a vulnerability in IE7 known as the “mhtml:” Redirection Information Disclosure was discovered.  RSnake wrote up a post about how nasty it was.  The basics: it took over the entire browser experience.
Fortunately, the bug was patched quickly, it required access to the web server/application (or HTTP header injection), and it only […]

Day one of PWN2OWN was unsuccessful, which is no big surprise.  But today, I am really hoping for something — otherwise we’ll have to wait until tomorrow for the third-party clieint-side exploits.
Here’s a little summary I wrote a bit back on how to increase the likelihood of exploiting the three systems.
Are Linux and Mac OS […]

I’ve downloaded and used the Firefox 3 beta browser software for the past few months and wanted to give a report on the latest of what works and what doesn’t.  Note that I had to install Nightly Tester Tools to get many of these to work.  I am also now using the Classic Compact theme, […]

Lesson 13: Just this week, in lessons 12 and 13, we’ve covered — at least partially — how to significantly reduce risk and vulnerability to system and network infrastructure.  We touched on protecting applications, but we weren’t able to go into specific detail about how to handle the path of execution to the attacks, only […]

Lesson 12: Yesterday, I shamelessly recommended to ditch all commercial networking gear. In the same breath, I also made several Cisco configuration recommendations. This is just the way that I work. The idea is that network appliances increase risk, but at the same time — they also allow you to connect to […]