Query

From: TLR@portcullis-security.com
Date: Tue Jul 16 2002 - 07:51:02 PDT

Next message: Evan: "Re: Assembler/C References"

Previous message: Dullienat_private: "Re: Assembler/C References"
Next in thread: rogue: "Re: Query"
Reply: rogue: "Re: Query"
Reply: Eric D. Williams: "RE: Query"
Reply: Roland Postle: "Re: Query"
Reply: Blue Boar: "Re: Query"
Reply: TLR@portcullis-security.com: "RE: Query"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

I think I know the answer to this but I just wanted to get a straw Poll type
opinion from you guys.

Recently, whilst performing a Penetration Test I developed a Java script
which, with the use of some tools, disables a well known personal firewall.
This personal firewall was designed as is used so that the company can
centrally control what Hosts and Networks a user can access via the use of
profiles. Can you see what it is yet? Anyway, would you guys consider the
ability to disable the firewall remotely a vulnerability or does it fall
simply in the arena of technique in the use of already existing tools and
vulnerabilities?

Cheers,Liam.

Next message: Evan: "Re: Assembler/C References"
Previous message: Dullienat_private: "Re: Assembler/C References"
Next in thread: rogue: "Re: Query"
Reply: rogue: "Re: Query"
Reply: Eric D. Williams: "RE: Query"
Reply: Roland Postle: "Re: Query"
Reply: Blue Boar: "Re: Query"
Reply: TLR@portcullis-security.com: "RE: Query"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Tue Jul 16 2002 - 09:51:38 PDT