Tuesday, April 15th, 2008

Mark Dowd scares me….

If you haven’t heard yet, Mark Dowd chopped up a Flash vulnerability ninja style and released a 25 page whitepaper describing his attack.  It’s truly a work of art and can be found here. <pdf>

    

I’m not even going to attempt to describe any portion of this attack (just thinking about it makes my head hurt), but Thomas Ptacek from Matasano has a great writeup <writeup>

Posted by xssniper | Filed in Uncategorized

  • http://r00tin.blogspot.com rob

    this exploit is so ridiculously, absurdly, retardedly beautiful. i like ptacek’s assertion that dowd is, in fact, a terminator (probably the Kristanna Loken variety that can control other machines).

  • Vladimir

    I wish I could understand at least some of that. Ah my silly first year university student brain.