CERT/CC Blog

April 2009 Archives

Release of Dranzer ActiveX Fuzzing Tool

By Will Dormann on April 16, 2009 11:50 AM | Permalink

Hi, it's Will. As previously mentioned, we have been investigating and discovering ActiveX vulnerabilities over the past few years. Today we released the Dranzer tool that we have developed to test ActiveX controls.

Continue reading Release of Dranzer ActiveX Fuzzing Tool

Categories: Discovery, Research, Web

Bypassing firewalls with IPv6 tunnels

By Ryan Giobbi on April 2, 2009 11:05 AM | Permalink

Hello, it's Ryan. We've talked about IPv6 in blog entries and vulnerability notes before. But instead of focusing on IPv6 vulnerabilities, this blog entry will show how functional IPv6 tunneling protocols can be used to bypass IPv4-only firewalls and ACLs. If you'd like a demonstration, watch this video that we created.

Continue reading Bypassing firewalls with IPv6 tunnels

Categories: Analysis

« March 2009 | Main Index | Archives | June 2009 »

The content on this site is made available on an "as is" basis without any warranties and solely for your personal viewing. Carnegie Mellon University is not liable for any consequences arising out of your use of such materials.

CERT/CC Blog

April 2009 Archives

Release of Dranzer ActiveX Fuzzing Tool

Bypassing firewalls with IPv6 tunnels

Recent Entries

Categories

Search this Blog

Related Links

Subscribe

Feedback