---------- Forwarded message ---------- Date: Mon, 27 Nov 2006 03:56:05 -0600 (CST) From: Gadi Evron <[EMAIL PROTECTED]> To: [EMAIL PROTECTED] Subject: TAUSEC is back - 3.12.06 (Next Sunday)
The Security Forum, hosted by the Tel Aviv University, is back for another year! 3rd of December, 2006. 18:00 (6 P.M.). Location: Tel Aviv University Lev Auditorium Map: http://www2.tau.ac.il/map/unimapl1.asp Attendance is free. Schedule: --------- 18:00 - DDoS: DNS Amplification Attacks - Gadi Evron Level: Technical/Medium DNS, DDoS, botnets, amplified attacks reaching over 10 Gbps. How is it done, case studies, packet captures and defenses. Using name server which allow for recursive searches from the world can be abused to cause an amplification DDoS attack, which means every packet sent will result in up to 73 packets being sent to the attacked target, as the source is spoofed. 19:00 - Break 19:20 - Zeroday Emergency Response Team (ZERT) patch for the VML vulnerability - Gil Dabah Level: Technical / Very High Level How the VML vulnerability in Internet Explorer works, the ZERT patch process and patch for it, and how it was built. This lecture will cover the vulnerable function itself and why it is exploitable, causing code execution in Internet Explorer. Further, the patches ZERT and Microsoft released will be examined and compared. Gadi. ================================================================= To unsubscribe, send mail to [EMAIL PROTECTED] with the word "unsubscribe" in the message body, e.g., run the command echo unsubscribe | mail [EMAIL PROTECTED]
