Flash NULL pointer + offset code execution . . .
I tend to agree - Mark Dowd is clearly not human: https://www.matasano.com/log/1032/this-new-vulnerability-dowds-inhuman-flash-exploit/
This kind of thing makes me want to like . . . go work on cars or something. :)
So here's what's sort of scary about Mark's paper and mentioned in the Matasano post - but worth reiterating here . . . this paper could usher in a new era of reliable exploitation for Flash based vulnerabilities.
Sort of like what Skylined did for IE exploitation using Javascript based heap spray . . .
Harsh times . . .
Comments
Anonymous
January 01, 2003
Must be synchronicity. I started out the day with a really interesting mail from Chris Wysopal talkingAnonymous
January 01, 2003
The comment has been removed