Dailydave mailing list archives
Re: .Net 0day?
From: Matt <matt () use net>
Date: Fri, 6 Jul 2007 10:59:30 -0700 (PDT)
On Fri, 6 Jul 2007, Dave Aitel wrote:
http://bp3.blogger.com/_aU4sjfnl3RY/Ro4EjK53JyI/AAAAAAAAAEM/DSWoKCXxXFI/s1600-h/P7060093.JPG Does anyone want to speculate as to the 0day? I assume putting %00%00 inside strings isn't it? :> Ooh, what about %u0000? :> Does mono have the same bug? Are they bug for bug compliant?
As for finding bugs in mono, here's a big clue: Do your fuzzing of ASP.NET apps while running mono itself under valgrind. There's a valgrind suppressions file in mono/data/mono.supp to filter out the false positives generated by libgc. Luis and I will be talking about combining fuzzing and valgrind in our BlackHat class (http://blackhat.com/html/bh-usa-07/train-bh-us-07-mh.html). Mono maps some performance-critical .NET fucntionality to native C code, generally for doing crypto and protocol decoding. Have fun! :) PS: For bonus points see if a PC-Lint run will find some of the bugs ;> -- tangled strands of DNA explain the way that I behave. http://www.clock.org/~matt _______________________________________________ Dailydave mailing list Dailydave () lists immunitysec com http://lists.immunitysec.com/mailman/listinfo/dailydave
Current thread:
- .Net 0day? Dave Aitel (Jul 06)
- Re: .Net 0day? Matt (Jul 06)