I was at the CCC (28C3) congress in Berlin recently. Where the two researchers Alexander ‘alech’ Klink and Julian ‘zeri’ Wälde disclosed a DoS vulnerability affecting about all programming languages in the way they utilize hashtables. Funny thing is, most server technologies, PHP, ASP (.NET), Java variants, Pyhon (django) etc, all appear to be vulnerable to different variants of the attack. It consists of abusing the hashtable datastructure(s) in a way…
More+Just to clear things out, the title appears more frightening than it actually is. As we all know, Microsoft Windows have this passion for running background services. Most of those services are running under a greatly privileged account called SYSTEM.
More+Back in good old 2008, a researcher at the security firm Outpost24 – Jack C. Louis; found a crucial DoS vulnerability in the fundaments of TCP/IP. In fact, it turned out to be so powerful, that all major operating systems appeared to be vulnerable.
We got a PoC…
More+There is a lot of news around lately in Holland about vulnerable voicemail systems but it is hard to find a practical approach to this so here is a little guide how you can test if you are vulnerable to this attack and some defense techniques for the end user.
More+If you are an active reader might have noticed we have been gone for some time for the public, for me the reason was that I was busy with other things but I am back and so are Mathias and Fredrik some time so it’s getting cosy again here already. Some time ago I started a project with a friend of mine which can facilitate secure chat to people who…
More+