Browser exploits to be released in July
,----[ Quote ]
| A really interesting development this month is that HD Moore has
| been stockpiling browser exploits, and is intending to release one per
| day for the month of July... see http://browserfun.blogspot.com/ . Most
| will be Internet Explorer/Windows, and most will be denial of service(
| that is IE crashers) as opposed to code-running exploits, but here's
| the interesting part... just about any application crash can be turned
| into arbitrary code execution, if someone is determined enough to work
| at it. This presents Microsoft with a dilemma. They can't patch and them
| all within the month, so which ones do they deal with first? And will the
| Bad Guys choose one, some or none, to turn into code executers? And how
| long will it take them? We've baited our breath and are watching with
| interest.
`----
http://blogs.ittoolbox.com/security/epl/archives/browser-exploits-to-be-released-in-july-10307
|
|