Favorite Files

No favorite files added yet

Recent Posts

1. Comment - Is Vista Really Bug-Plagued as the NY Times Claims?

   (Dec 29, 2006 - 1:25 PM)

   The logic behind this article is deeply flawed at best. The author claims that since the flaw took down the whole system and thus does not give the attacker any chance to exploit it. Well, obviously he is not a hacker! When buffer overrun occurs, an attacker can carefully align his code in the corrupted buffer and causing his code to execute (e.g. a carefully placed jmp statement). This would by pass any security defence the OS might have.
   
   Wether or not such attack can be carried out easily is certainly another story, nevertheless, we should take this very seriously because of the potential that it can be exploited.