If you haven't heard yet, Mark Dowd chopped up a Flash vulnerability ninja style and released a 25 page whitepaper describing his attack. It's truly a work of art and can be found here. <pdf>
I'm not even going to attempt to describe any portion of this attack (just thinking about it makes my head hurt), but Thomas Ptacek from Matasano has a great writeup <writeup>
this exploit is so ridiculously, absurdly, retardedly beautiful. i like ptacek's assertion that dowd is, in fact, a terminator (probably the Kristanna Loken variety that can control other machines).
ReplyDeleteI wish I could understand at least some of that. Ah my silly first year university student brain.
ReplyDelete