[LUAU] get ready for apple security bugs

Tim Newsham newsham at lava.net
Wed Nov 1 13:43:18 PST 2006


>> My understanding is that HDM found a vulnerability independantly
>> and implemented an exploit for it.
>
> Phleeze.   Its the same old "send a malformed IE in a probe response (or 
> beacon) frame" crapfest that was in the Maynor/Ellch "exploit".

sure, but since maynor wasnt telling, HDM had to write his own fuzzer
to identify the vulnerability and develop an exploit.  Hence
"independantly."  Much as Apple did when identifying similar issues.

>> Not sure what this has to do with Maynor not letting it drop...
> The Krebs connection.  He's trying to get some respect after dropping the 
> ball (on his foot) over the whole Maynor/Ellch affair.

So it's not Maynor not letting it drop?

Tim Newsham
http://www.thenewsh.com/~newsham/



More information about the LUAU mailing list