[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] Automated Vulnerability Scanners

To: "Q Beukes" <full-disclosure@xxxxxxxxxxx>
Subject: Re: [Full-disclosure] Automated Vulnerability Scanners
From: "Dude VanWinkle" <dudevanwinkle@xxxxxxxxx>
Date: Fri, 24 Feb 2006 14:36:56 -0500

On 2/24/06, Q Beukes <full-disclosure@xxxxxxxxxxx> wrote:
> no, what I was talking about was programs/algorithms that actually
> scan software to find new unknown problems.
>
> i have never heard of anything like this myself nor can't think of an
> efficient way
> of implementing it, yet someone claimed they exist.
>
> I can't find any on google either?

Are you talking about something that looks through the source code for
a bad malloc implementation, or something that will try to go through
the assembly for an off-by-one error?

-JP
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

References:
- [Full-disclosure] Automated Vulnerability Scanners
  - From: Q Beukes
- Re: [Full-disclosure] Automated Vulnerability Scanners
  - From: Q Beukes

Prev by Date: [Full-disclosure] iDefense Security Advisory 02.24.06: SCO Unixware Setuid ptrace Local Privilege Escalation Vulnerability
Next by Date: Re: [Full-disclosure] Automated Vulnerability Scanners
Previous by thread: Re: [Full-disclosure] Automated Vulnerability Scanners
Next by thread: RE: [Full-disclosure] Automated Vulnerability Scanners
Index(es):
- Date
- Thread