|
Dan Bernstein announces 44 *nix security holes |
PDF |
| Print | |
E-mail |
Dan Bernstein (aka DJB) and author of the well-known and extremely popular
qmail
secure email MTA,
has announced the discovery of 44 security holes that were found by students in his software security assessment course "MCS 494: Unix Security Holes" at the University of Illinois at Chicago. Vulnerable programs of note include: CUPS, NASM, mpg123, MPlayer, xine-lib, and numerous others. The homework for the course was to find and exploit 10 previously undiscovered security holes in currently deployed Unix software. In a class of 25, 44 security holes were found, but most of the class failed.
read the full article on slashdot
|
