On Wed, 21 Sep 2005 23:59:53 EDT, Ill will said: > yea Paul we all dont know how to take 2 pre-existing flaws and mash > them together > with the help of others to make our so-called 'security advisories' > and credit ourselves
What does that make Liu Die Yu's "Six Step IE Cache Remote Compromise" count as? And remember that there's "obvious" interaction of two flaws, and then there's ones that rely on very non-obvious subtle magic.....
pgpxDRurjIPB8.pgp
Description: PGP signature
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
