Full Disclosure mailing list archives
Re: Nmap NOT VULNERABLE to Windows DLL Hijacking Vulnerability
From: "Thor (Hammer of God)" <thor () hammerofgod com>
Date: Sat, 18 Sep 2010 17:15:18 +0000
I'm not sure that I (or other developers for that matter) appreciate being likened to a child with the associated innuendo of naiveté and ignorance. Nor do I think you are qualified to make the assumption that MSFT is acting as my "parent" and that API calls are "grenades." It's a documented API and is accompanied with clear security warnings. If you wish to engage in hyperbole, why not email God and ask him why Deadly Nightshade didn't come with warnings pre-printed on the leaves and why poison oak didn't grow with a "don't wipe your butt with this while camping" disclaimer? APIs are APIs. Pomegranates are Pomegranates. It's people with mindsets like yours that turn "grenates" into grenades. t
-----Original Message----- From: full-disclosure-bounces () lists grok org uk [mailto:full-disclosure- bounces () lists grok org uk] On Behalf Of Pavel Kankovsky Sent: Saturday, September 18, 2010 9:21 AM To: full-disclosure () lists grok org uk Subject: Re: [Full-disclosure] Nmap NOT VULNERABLE to Windows DLL Hijacking Vulnerability On Wed, 8 Sep 2010, jf wrote:I still don't see how this is really MSFTs fault. I mean, there's defined APIs for getting the version, theres a fairly clear warning on MSDN for LoadLibrary & SearchPath; isn't this akin to blaming the OS vendor for the app vendor improperly using strcpy?Providing a very dangerous API to developers and advising them to avoid the most straightforward way of using it is like giving a hand grenade to kids and advising them to be very careful when they play with it. -- Pavel Kankovsky aka Peak / Jeremiah 9:21 \ "For death is come up into our MS Windows(tm)..." \ 21st century edition / _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- nmap <= 5.21 is vulnerable to Windows DLL Hijacking Vulnerability. Nikhil Mittal (Sep 06)
- Re: Nmap NOT VULNERABLE to Windows DLL Hijacking Vulnerability Fyodor (Sep 08)
- Re: Nmap NOT VULNERABLE to Windows DLL Hijacking Vulnerability paul . szabo (Sep 08)
- Re: Nmap NOT VULNERABLE to Windows DLL Hijacking Vulnerability jf (Sep 09)
- Re: Nmap NOT VULNERABLE to Windows DLL Hijacking Vulnerability paul . szabo (Sep 08)
- Re: Nmap NOT VULNERABLE to Windows DLL Hijacking Vulnerability Rohit Patnaik (Sep 08)
- Re: Nmap NOT VULNERABLE to Windows DLL Hijacking Vulnerability jf (Sep 09)
- Re: Nmap NOT VULNERABLE to Windows DLL Hijacking Vulnerability paul . szabo (Sep 08)
- Re: Nmap NOT VULNERABLE to Windows DLL Hijacking Vulnerability Pavel Kankovsky (Sep 18)
- Re: Nmap NOT VULNERABLE to Windows DLL Hijacking Vulnerability Thor (Hammer of God) (Sep 18)
- Re: Nmap NOT VULNERABLE to Windows DLL Hijacking Vulnerability paul . szabo (Sep 08)
- Re: Nmap NOT VULNERABLE to Windows DLL Hijacking Vulnerability Fyodor (Sep 08)
- Re: Nmap NOT VULNERABLE to Windows DLL HijackingVulnerability Stefan Kanthak (Sep 14)