Da Massive writes "Mark Dowd's paper "Application-Specific Attacks: Leveraging the ActionScript Virtual Machine" — that points out a set of techniques that promises to open up a class of vulnerability research and exploits that was previously thought to be impossible to attack — has alarmed researchers. Already the small but growing group of Information Security experts that have had the chance to read and digest the contents of the paper are expressing an excited concern depending on how they are interpreting the contents of the paper.
While the Flash vulnerability described in the paper has been patched by Adobe, it is the presentation of a reliable exploit for NULL pointer dereferencing that has the researchers who have read the paper excited." Link to Original Source
This discussion was created for logged-in users only, but now has been archived.
No new comments can be posted.
NULL pointer exploit excites researchers 0 Comments More Login /
Get More Comments