|
 |
> Wow, it seems that security updates for various pieces of 'standard'
> Windows-related software are coming down fast and furious these days: Firefox,
> Java, Flash Player, Windows itself (well, my old XP version.) I'm getting one or
> the other of these on almost a daily basis. Cyber-criminals and spammers must be
> working overtime!
>
This happens when someone develops a new(ish) idea on how to break into
a system. After that, every one starts to see if they can use the same
apporach to break into another program.
Ex: One guy finds out that you can create specially crafted .BMP files
with a color palette that has 4294967297 (MAX_INT + 1) colors, causing
the application to overflow, and execute arbitrary code. 12 other guys
will go "hmm... interesting... Let's try with .JPG, .GIF, .PNG, etc...).
People will also try to find applications where this can be exploited,
and once they find that a certain version of, say libpng is vulnerable,
every piece of software that uses that libpng will have to be updated.
(Except POV-Ray, of course, because we were told that nothing bad could
happen... And no one POV-Ray user would be evil enough to post a scene
with a bad .PNG texture in it).
--
/*Francois Labreque*/#local a=x+y;#local b=x+a;#local c=a+b;#macro P(F//
/* flabreque */L)polygon{5,F,F+z,L+z,L,F pigment{rgb 9}}#end union
/* @ */{P(0,a)P(a,b)P(b,c)P(2*a,2*b)P(2*b,b+c)P(b+c,<2,3>)
/* gmail.com */}camera{orthographic location<6,1.25,-6>look_at a }
Post a reply to this message
|
|
