Sponsored White Papers, Webcasts, and Downloads
ZDNet Resources
- Adobe patches 7 issues, including pwn2own contest flaw and DNS rebinding issues
- Adobe patches 7 issues, including Pwn2Own contest flaw and DNS rebinding issuesadobe was aware of pwn2own flaw since monthsadobe was aware of pwn2own flaw since months
- Tags: Domain names, flaw, Adobe patches 7, DNS Rebinding, Pwn2Own, DNS, Adobe Systems Inc.
- Discussion threads 2008-04-10
- pwn2own: What OS really won?
- Pwn2Own: What OS really won?They all lost!In my opinion, the Flash flaw would've been able to compromise any of the OS's, so I would say they all lost. BUT, if I had to go on who lost the most, I'd go as follows:1.) Mac OS X - A flaw...
- Tags: Operating systems, UNIX, SECURITY, operating system, Pwn2Own, flaw, Ubuntu, Linux
- Discussion threads 2008-03-31
- pwn2own: What OS really won?
- Apple had a rough security week. Vista was hacked. And Linux is unhackable. Those takeaways appear to be the consensus view following the Pwn2Own contest but it's not that simple. Under the contest rules, organizers offered the Sony Vaio (Ubuntu 7.10), Fujitsu U810 Vista Ultimate, and the MacBook...
- Tags: Ubuntu, Operating System, Apple MacBook, Microsoft Windows Vista, Apple Inc., Hacker, Pwn2Own, Notebooks, Microsoft Windows Vista (Longhorn), Hardware, Notebooks & Tablets, Operating Systems, Microsoft Windows, Software, Larry Dignan
- Blog posts 2008-03-31
- CanSec West '08 - pwn2own contest rules announced
- CanSec West '08 - Pwn2Own contest rules announcedPet PeeveGuinness has 2 N's and 2 S's. Besides that - good luck with Pwn2Own.of course it's a conspiracyto patch up right before the conference. Think about it, does Apple ever do anything that's not planned?RE: CanSec West '08 - Pwn2Own contest...
- Tags: Guinness, Pwn2Own, CanSec West
- Discussion threads 2008-03-19
Additional Resources
- News to know: IBM; Microsoft; Googlehoo; Safari; Enterprise 2.0
- Notable headlines: Ed Bott: Is Hyper-V ready for the Windows desktop? Mary Jo Foley: Microsoft looks to make product planning more science than art. Gallery right. Better the Windows Vista devil you know than the Windows 7...
- Tags: Google Inc., Larry Dignan, Apple Safari, Enterprise 2.0, Microsoft Corp., IBM Corp., Microsoft Windows, Open Source, Operating Systems, Software
- Blog posts 2008-04-17
- Apple plugs pwn2own winning vulnerability
- Apple plugged the winning vulnerability in the Pwn2own contest on Wednesday in a Safari update. In an update for Safari (3.1.1), Apple fixed the following vulnerabilities: CVE-2008-1026, also known as the flaw that won hacker Charlie Miller $10,000.in the Pwn2Own contest at CanSecWest. This...
- Tags: Apple Macintosh, Apple Safari, Vulnerability, Mac OS X Server, Apple Inc., Apple Mac OS X, Apple Mac OS, Operating Systems, Desktops, Software, Hardware, Larry Dignan
- Blog posts 2008-04-16
- News to know: Microhoo; Adobe patch; Windows bloat; AMD
- Notable headlines: Larry Dignan: Yahoo goes nuclear vs. Microsoft: Inks limited Google ad deal; Microsoft fires back Mary Jo Foley: Microsoft-Yahoo-Google: The vicious antitrust circle Yahoo's strategy: Torpedo the Microsoft deal or up the offer? Garett Rogers: Google gets business from Yahoo...
- Tags: Adobe Systems Inc., Google Inc., Microsoft Corp., Advanced Micro Devices Inc., Microsoft Windows, Robots, Operating Systems, Open Source, Software, Emerging Technologies, Larry Dignan
- Blog posts 2008-04-10
- Adobe patches 7 issues, including pwn2own contest flaw and DNS rebinding issues
- Adobe published an advisory covering issues, including a fix for the Pwn2Own flaw that we previously discussed here. Adobe's details are published here. One of the issues that was patched was discovered by myself and fellow researcher (and co-worker at Ernst & Young's Advanced Security Center) Rob Carter, see the picture to the...
- Tags: Adobe Systems Inc., DNS, Domain, Lookup, Microsoft Internet Explorer, Web Browser, Domain Name, Flaw, Rob, Flash, XmlHttp Request, Kicker, Domain Names, Web Browsers, Networking, Internet, Nathan McFeters
- Blog posts 2008-04-09
- News to know: WGA for Office; RSA; Apple; Adobe
- Notable headlines: Mary Jo Foley: Microsoft to add the Genuine Advantage 'nag' to Office Dennis Howlett: Secure coding: the invisible elephant RSA wrap: Larry Dignan: How will Microsoft's trusted stack work? Trusted Internet initiative aims for security...
- Tags: Adobe Systems Inc., RSA Security Inc., Microsoft Office, Microsoft Windows Genuine Advantage, Apple Inc., Microsoft Corp., Microsoft Windows, Security, Operating Systems, Software, Larry Dignan
- Blog posts 2008-04-09
- Adobe Flash pwn2own details released by ZDI...
- Adobe Flash Pwn2Own details released by ZDI......Like I said before, run it against two configurations of Linux and tell us what you get. ]:)Currently logged in user?[i]Exploitation of this vulnerability can result in arbitrary code execution under the context of the currently logged in user.[/i]Is it the currently logged in...
- Tags: Web browsers, Adobe Systems Inc., Adobe Flash, Web browser, software
- Discussion threads 2008-04-08
- Adobe Flash pwn2own details released by ZDI...
- ... and unfortunately leaves much to be desired. I think many people were hoping for the disclosure from ZDI to contain a lot of details on what could've been exploited with this issue, unfortunately, the details just aren't really there. In fact, after reading it, I think I have more...
- Tags: User Interaction, Adobe Systems Inc., Vulnerability, Adobe Flash Player, ZDI Advisory, Security, Nathan McFeters
- Blog posts 2008-04-08
- Black Hat Europe, Day 4 (Finally): Early wake-up calls always lead to long days
- For those of you who had been reading my Day 1, Day 2/Day 3, and Day 2 revisited stories about Black Hat Europe here on ZDNet, I'm sure you were wondering what happened to Day 4, the second day of conferences. Well, after a long delay, here it is! Basically, I got caught up...
- Tags: Black Hat, Phishing, Cyberthreats, Spam, Viruses And Worms, Security, Spam And Phishing, Nathan McFeters
- Blog posts 2008-04-07
- Adobe claims to have known of Flash issue prior to CanSecWest '08, patch is on the way
- In a comment in a talkback on the original issue discovered in Adobe Flash that led to the compromise of the Vista machine at the Pwn2Own contest, an Adobe representitive, Erick Lee, Manager of Adobe Secure Software Engineering Team ASSET, claimed that Adobe knew of the flaw and has a patch...
- Tags: Adobe Systems Inc., Patches, Security, Team Management, Management, Nathan McFeters
- Blog posts 2008-04-03
- News to know: Ubuntu; Firefox 3; RIM; CTIA
- Notable headlines: Adrian Kingsley-Hughes: Is Ubuntu becoming the generic Linux distro? Paula Rooney: Firefox 3 Beta 5 released, RC1 Freezes April 8 Adrian Kingsley-Hughes: Firefox 3.0 Beta 5 - Fastest browser yet! Release notes Larry...
- Tags: Ubuntu, Research In Motion Ltd., Mozilla Firefox, Mobile, Network, SAP AG, CTIA, Data Centers, Cellular Phones, Advertising & Promotion, Storage, Hardware, Data Management, Consumer Electronics, Personal Technology, Marketing, Larry Dignan
- Blog posts 2008-04-03
- Interview with the Vista pwn2own contest winners
- Interview with the Vista Pwn2Own contest winnersSo NO, we did not duplicate it on any other platform.What Nate states is this is a compiler issue with a polymorphism/name mangling bug. Therefore, it is not a Adobe coding issue. So my questions still remain:1) Have you duplicated this on...
- Tags: Microsoft Windows Vista (Longhorn), data execution prevention, Vista Pwn2Own, Nate, flaw, Microsoft Windows Vista
- Discussion threads 2008-04-02
- Interview with the Vista pwn2own contest winners
- Update 04/03/2008: I've updated the article as apparently the link to k2's blog was broken. Also, it's important to note that Derek Callaway was a part of this research and exploitation as well, and I neglected to mention that. So obviously our coverage of the Pwn2Own contest has...
- Tags: Adobe Systems Inc., Vulnerability, JavaScript, Microsoft Windows Vista, Exploit, Data Execution Prevention, Flaw, Nate, Programming Languages, Java, Security, Software Development, Software/Web Development, Nathan McFeters
- Blog posts 2008-04-02
- News to know: Dell; MinWin; Microsoft's Glasnost; Mozilla
- Notable headlines: Larry Dignan: Dell: We'll save $3 billion; Cut 8,800 positions Ed Bott: Is MinWin really the new Windows 7 kernel? Jason Perlow: Microsoft Meets Open Source: Glasnost 2.0. Dana Blankenhorn: If the birthmark fits, Microsoft will wear it ...
- Tags: Apple iPhone, Larry Dignan, Dell Computer Corp., Microsoft Corp., Mozilla Corp., Wireless LANs, Data Centers, Microsoft Windows, Storage, Wi-Fi, Wireless, Hardware, Data Management, Operating Systems, Software
- Blog posts 2008-04-01
- More details on the pwn2own Flash flaw that won the Vista machine
- More details on the Pwn2Own Flash flaw that won the Vista machineOr should we blame MicrosoftFor their inability to push DEP sooner and get more of a response out developers sooner and breaking applications that have been coded wrongly for years.That would be the ABMer's excuse anyway.NBMer would say that...
- Tags: Microsoft Windows Vista (Longhorn), Programming languages, Operating systems, UNIX, SECURITY, Pwn2Own Flash, Pwn2Own Flash flaw, Microsoft Windows Vista, data execution prevention, Vista Machine, Java, flaw, Nate, Adobe Systems Inc., Microsoft Corp., Linux
- Discussion threads 2008-03-31
- More details on the pwn2own Flash flaw that won the Vista machine
- So, I've been pretty surprised by the response to the discussion of the Flash flaw that allowed the Vista machine to be compromised in the Pwn2Own contest. I'm working on getting an interview with Alexander Sotirov and Shane Macaulay (see image, courtesy of ZDI's official site) to discuss the issue, but...
- Tags: Java, Microsoft Windows Vista, Data Execution Prevention, Flaw, Microsoft Windows Vista (Longhorn), Security, Operating Systems, Microsoft Windows, Software, Nathan McFeters
- Blog posts 2008-03-31
- News to know: OOXML; Adobe AIR for Linux; Copyright; Best midrange hardware
- Notable headlines: Paula Rooney: Microsoft's OOXML gets ISO approval ... maybe Mary Jo Foley: Microsoft OOXML standardization bid: The clock is ticking OOXML standard vote down to the wire Christopher Dawson: OOXML vs. ODF - Should Ed Tech care? ...
- Tags: Apple iPhone, Adobe Systems Inc., Adobe PhotoShop, Adobe AIR, Microsoft Corp., Hardware, Photo-sharing, Dashwire, Linux, UNIX, Operating Systems, Open Source, Software, Larry Dignan
- Blog posts 2008-03-31
- << Previous
- page 1 of 1
- Next >>
White Papers and Webcasts
"Intel® Centrino® with vPro™ Technology and the new 45nm Intel® Core™ Duo processor delivers greater than 2x the performance over older generation Intel® Centrino® components when your system is multitasking.
Now you can replace your old IBM, HP, Dell, or Sun server with the new Sun SPARC Enterprise T5140 or T5240 server, and get more performance, power savings, and space savings, plus a 30% up-front savings for a limited time.
