TippingPoint Digital Vaccine Laboratories
DID YOU KNOW... The ZDI has published over 1100 high-risk vulnerabilities since the inception of the program.

It's not about Spider-Man, sorry...

"With great power comes great responsibility." Truer words have never been spoken, neither to young Peter Parker, nor to modern application programmers. This applies doubly to programmers who install ActiveX controls on Microsoft Windows systems.(Let me apologize right now for not making this posting about Spider-Man. I would have enjoyed it a lot more, and so would you. Unfortunately, Spider-Man doesn't really have a lot to do with network security, and ActiveX controls do. I pro ...


Sulley vs. HP OpenView

These bugs are the result of one of our weekly all-night audit sessions. This posting will quickly walk through the discovery aspects of TPTI-07-14: HP OpenView Multiple Product Shared Trace Service Stack Overflow Vulnerabilities, outlining a simple case study of applying the Sulley Fuzzing Framework released at BlackHat US 2007.