Comments for Recognize-Security http://www.rec-sec.com a non-profit information security web site authored by Moshe Ben Abu (Trancer), focusing on vulnerability research, exploit development (mainly for the Metasploit Framework), web application security, information security and hacking news from around the world. Thu, 15 Sep 2011 17:52:53 +0000 hourly 1 Comment on Microsoft Internet Explorer iepeers.dll use-after-free exploit (meta) by Bret http://www.rec-sec.com/2010/03/10/internet-explorer-iepeers-use-after-free-exploit/comment-page-1/#comment-4696 Bret Thu, 15 Sep 2011 17:52:53 +0000 http://www.rec-sec.com/?p=1017#comment-4696 Have you thought to be including additional video clips for your websites and keep the readers more interested? I mean I just read over the article of yours and it was very fine but as I'm more of a visual learner,I discovered that to get more valuable. Just my my idea, Good luck Have you thought to be including additional video clips for your websites and keep the readers more interested? I mean I just read over the article of yours and it was very fine but as I’m more of a visual learner,I discovered that to get more valuable. Just my my idea, Good luck

]]> Comment on BackTrack Linux 4 released by Penetration Testing http://www.rec-sec.com/2010/01/21/backtrack-linux-4-released/comment-page-1/#comment-4695 Penetration Testing Sat, 21 May 2011 04:50:01 +0000 http://www.rec-sec.com/?p=929#comment-4695 BackTrack 5 has been released. This new revision has been built from scratch and boasts several major improvements over all our previous releases. Download Backtrack 5 Now BackTrack 5 has been released. This new revision has been built from scratch and boasts several major improvements over all our previous releases. Download Backtrack 5 Now

]]> Comment on Microsoft Internet Explorer iepeers.dll use-after-free exploit (meta) by Peter http://www.rec-sec.com/2010/03/10/internet-explorer-iepeers-use-after-free-exploit/comment-page-1/#comment-4561 Peter Sat, 15 Jan 2011 01:08:26 +0000 http://www.rec-sec.com/?p=1017#comment-4561 Another reason why I suspect I am happy with only using Chrome. Another reason why I suspect I am happy with only using Chrome.

]]> Comment on Green Dam URL Processing Buffer Overflow exploit (meta) by Locksmith http://www.rec-sec.com/2009/06/16/green-dam-url-overflow-exploit/comment-page-1/#comment-4462 Locksmith Wed, 22 Dec 2010 04:22:42 +0000 http://www.rec-sec.com/?p=678#comment-4462 Regarding security systems, specifically for companies, I need to concur with what you've said totally. You can find so a lot of alternatives in the marketplace, it's crucial for a professional to be aware what is finestfor his or her scenario as well as particular complex. The ideas you are supplying will be a excellent assist to companies as well as security professionals alike. Many thanks once more! Regarding security systems, specifically for companies, I need to concur with what you’ve said totally. You can find so a lot of alternatives in the marketplace, it’s crucial for a professional to be aware what is finestfor his or her scenario as well as particular complex. The ideas you are supplying will be a excellent assist to companies as well as security professionals alike. Many thanks once more!

]]> Comment on Stuxnet by Trancer http://www.rec-sec.com/2010/09/28/stuxnet/comment-page-1/#comment-2475 Trancer Thu, 07 Oct 2010 16:17:17 +0000 http://www.rec-sec.com/?p=1189#comment-2475 Bruce Schneier on the Stuxnet worm: http://www.schneier.com/blog/archives/2010/10/stuxnet.html Bruce Schneier on the Stuxnet worm:
http://www.schneier.com/blog/archives/2010/10/stuxnet.html

]]> Comment on Stuxnet by Eddie http://www.rec-sec.com/2010/09/28/stuxnet/comment-page-1/#comment-2207 Eddie Mon, 04 Oct 2010 15:38:39 +0000 http://www.rec-sec.com/?p=1189#comment-2207 recommended article for all the speculators: Debunking the Bunk of Stuxnet http://antivirus.about.com/b/2010/10/02/debunking-the-bunk-of-stuxnet.htm recommended article for all the speculators: Debunking the Bunk of Stuxnet
http://antivirus.about.com/b/2010/10/02/debunking-the-bunk-of-stuxnet.htm

]]> Comment on What’s up with WordPress security? by h4ck-a-lot http://www.rec-sec.com/2007/03/27/whats-up-with-wordpress-security/comment-page-1/#comment-2205 h4ck-a-lot Mon, 04 Oct 2010 15:34:50 +0000 http://rec-sec.com/index.php/2007/03/27/whats-up-with-wordpress-security/#comment-2205 pwnpress.rb was one of the greatest tools ever :D pwnpress.rb was one of the greatest tools ever :D

]]> Comment on Trend Micro Internet Security Pro 2010 ActiveX extSetOwner() Remote Code Execution Exploit (meta) by Trancer http://www.rec-sec.com/2010/09/28/trend-micro-internet-security-2010-rce-exploit/comment-page-1/#comment-2158 Trancer Sun, 03 Oct 2010 18:02:27 +0000 http://www.rec-sec.com/?p=1204#comment-2158 @alice No, this isn't a 0day exploit. Trend Micro released a patch for this vulnerability here: http://esupport.trendmicro.com/pages/Hot-Fix-UfPBCtrldll-is-vulnerable-to-remote-attackers.aspx @alice
No, this isn’t a 0day exploit. Trend Micro released a patch for this vulnerability here:
http://esupport.trendmicro.com/pages/Hot-Fix-UfPBCtrldll-is-vulnerable-to-remote-attackers.aspx

]]> Comment on Trend Micro Internet Security Pro 2010 ActiveX extSetOwner() Remote Code Execution Exploit (meta) by alice http://www.rec-sec.com/2010/09/28/trend-micro-internet-security-2010-rce-exploit/comment-page-1/#comment-2154 alice Sun, 03 Oct 2010 17:39:29 +0000 http://www.rec-sec.com/?p=1204#comment-2154 is this vulnerability patched or this is a 0day exploit? is this vulnerability patched or this is a 0day exploit?

]]> Comment on Bruce Schneier: The Future of the Security Industry by Lando http://www.rec-sec.com/2010/09/27/bruce-schneier-security-industry/comment-page-1/#comment-2152 Lando Sun, 03 Oct 2010 17:05:01 +0000 http://www.rec-sec.com/?p=1191#comment-2152 Very nice thank you for sharing. Bruce Schneier is definitely on of the leaders of the information security field. Very nice thank you for sharing. Bruce Schneier is definitely on of the leaders of the information security field.

]]> Comment on Novell iPrint Client ActiveX Control call-back-url Stack-based Buffer Overflow exploit (meta) by Trancer http://www.rec-sec.com/2010/09/21/novell-iprint-callbackurl-buffer-overflow-exploit/comment-page-1/#comment-2151 Trancer Sun, 03 Oct 2010 17:01:01 +0000 http://www.rec-sec.com/?p=1078#comment-2151 @Todd Novell iPrint Client 5.44 is the latest version. Only one newer from the vulnerable version this exploit targets. @Todd
Novell iPrint Client 5.44 is the latest version. Only one newer from the vulnerable version this exploit targets.

]]> Comment on Stuxnet by Trancer http://www.rec-sec.com/2010/09/28/stuxnet/comment-page-1/#comment-2150 Trancer Sun, 03 Oct 2010 16:58:39 +0000 http://www.rec-sec.com/?p=1189#comment-2150 Yep, ser is right. Yep, ser is right.

]]> Comment on Novell iPrint Client ActiveX Control call-back-url Stack-based Buffer Overflow exploit (meta) by Todd J http://www.rec-sec.com/2010/09/21/novell-iprint-callbackurl-buffer-overflow-exploit/comment-page-1/#comment-2149 Todd J Sun, 03 Oct 2010 16:54:10 +0000 http://www.rec-sec.com/?p=1078#comment-2149 hey man cool exploit. what's the latest version of Novell iPrint Client? hey man cool exploit. what’s the latest version of Novell iPrint Client?

]]> Comment on Stuxnet by ser http://www.rec-sec.com/2010/09/28/stuxnet/comment-page-1/#comment-2024 ser Fri, 01 Oct 2010 19:26:05 +0000 http://www.rec-sec.com/?p=1189#comment-2024 dookie It is not common in Israel to write the dates as MM/DD/YYYY it's not the default format... so 5th to September would be more logical,I bet some one can find a funny fact about Israel on that date. dookie

It is not common in Israel to write the dates as
MM/DD/YYYY
it’s not the default format…
so 5th to September would be more logical,I bet some one can find a funny fact about Israel on that date.

]]> Comment on Stuxnet by Trancer http://www.rec-sec.com/2010/09/28/stuxnet/comment-page-1/#comment-2001 Trancer Fri, 01 Oct 2010 12:11:48 +0000 http://www.rec-sec.com/?p=1189#comment-2001 speculations... speculations.... as I said, we'll probably never know. speculations… speculations…. as I said, we’ll probably never know.

]]>