Click here to Skip to main content
14,265,813 members

The Insider News

   

The Insider News is for breaking IT and Software development news. Post your news, your alerts and your inside scoops. This is an IT news-only forum - all off-topic, non-news posts will be removed. If you wish to ask a programming question please post it here.

Get The Daily Insider direct to your mailbox every day. Subscribe now!

 
GeneralRe: Pattern matching in C# 8.0 Pin
Joe Woodbury2-May-19 9:37
professionalJoe Woodbury2-May-19 9:37 
GeneralRe: Pattern matching in C# 8.0 Pin
Bernhard Hiller2-May-19 23:02
memberBernhard Hiller2-May-19 23:02 
NewsResearchers achieve 100 percent recognition rates for half and three-quarter faces Pin
Kent Sharkey1-May-19 12:00
staffKent Sharkey1-May-19 12:00 
GeneralRe: Researchers achieve 100 percent recognition rates for half and three-quarter faces Pin
Dan Neely2-May-19 2:46
memberDan Neely2-May-19 2:46 
GeneralRe: Researchers achieve 100 percent recognition rates for half and three-quarter faces Pin
Joe Woodbury2-May-19 9:26
professionalJoe Woodbury2-May-19 9:26 
GeneralRe: Researchers achieve 100 percent recognition rates for half and three-quarter faces Pin
David O'Neil2-May-19 16:44
professionalDavid O'Neil2-May-19 16:44 
GeneralRe: Researchers achieve 100 percent recognition rates for half and three-quarter faces Pin
Rick York3-May-19 11:14
mveRick York3-May-19 11:14 
NewsRemote code execution vulnerability on most Dell Computers Pin
Dan Neely1-May-19 9:21
memberDan Neely1-May-19 9:21 
In this article, I’ll be looking at a Remote Code Execution vulnerability I found in Dell SupportAssist, software meant to “proactively check the health of your system’s hardware and software” and which is “preinstalled on most of all new Dell devices”.

...

The key bypass to this mitigation was in this sentence: “if the URL starts with http://, it will be replaced by https://”. See, the thing was, if the URL string did not start with http://, even if there was http:// somewhere else in the string, it wouldn’t replace it. Getting a URL to work was tricky, but I eventually came up with “ http://downloads.dell.com/abcdefg” (the space is intentional). When you ran the string through the starts with check, it would return false, because the string starts with “ “, thus leaving the “http://” alone.


So close, yet so far...
Did you ever see history portrayed as an old man with a wise brow and pulseless heart, weighing all things in the balance of reason?
Is not rather the genius of history like an eternal, imploring maiden, full of fire, with a burning heart and flaming soul, humanly warm and humanly beautiful?
--Zachris Topelius

Training a telescope on one’s own belly button will only reveal lint. You like that? You go right on staring at it. I prefer looking at galaxies.
-- Sarah Hoyt

GeneralRe: Remote code execution vulnerability on most Dell Computers Pin
#realJSOP1-May-19 23:43
mve#realJSOP1-May-19 23:43 
GeneralRe: Remote code execution vulnerability on most Dell Computers Pin
Bernhard Hiller2-May-19 23:05
memberBernhard Hiller2-May-19 23:05 
NewsA conspiracy to kill IE6 Pin
Kent Sharkey1-May-19 8:45
staffKent Sharkey1-May-19 8:45 
GeneralRe: A conspiracy to kill IE6 Pin
Dan Neely1-May-19 9:27
memberDan Neely1-May-19 9:27 
GeneralRe: A conspiracy to kill IE6 Pin
FIorian Schneidereit2-May-19 5:32
memberFIorian Schneidereit2-May-19 5:32 
GeneralRe: A conspiracy to kill IE6 Pin
Rick York3-May-19 11:16
mveRick York3-May-19 11:16 
GeneralRe: A conspiracy to kill IE6 Pin
Mark_Wallace4-May-19 6:35
memberMark_Wallace4-May-19 6:35 
NewsWhy 'Windows Lite' will NOT be announced at Microsoft Build 2019 Pin
Kent Sharkey1-May-19 8:30
staffKent Sharkey1-May-19 8:30 
GeneralRe: Why 'Windows Lite' will NOT be announced at Microsoft Build 2019 Pin
David O'Neil1-May-19 19:52
professionalDavid O'Neil1-May-19 19:52 
GeneralRe: Why 'Windows Lite' will NOT be announced at Microsoft Build 2019 Pin
FIorian Schneidereit2-May-19 5:35
memberFIorian Schneidereit2-May-19 5:35 
GeneralRe: Why 'Windows Lite' will NOT be announced at Microsoft Build 2019 Pin
Joe Woodbury2-May-19 9:29
professionalJoe Woodbury2-May-19 9:29 
NewsWorld’s first computer virus to counter cyberattacks is in the works Pin
Kent Sharkey1-May-19 8:00
staffKent Sharkey1-May-19 8:00 
NewsGoogle will soon let you auto-delete your location tracking data Pin
Kent Sharkey1-May-19 8:00
staffKent Sharkey1-May-19 8:00 
GeneralRe: Google will soon let you auto-delete your location tracking data Pin
Joe Woodbury2-May-19 9:29
professionalJoe Woodbury2-May-19 9:29 
NewsMicrosoft promises to boil down its lengthy and confusing privacy controls… in 1,500-word announcement Pin
Kent Sharkey30-Apr-19 11:30
staffKent Sharkey30-Apr-19 11:30 
GeneralRe: Microsoft promises to boil down its lengthy and confusing privacy controls… in 1,500-word announcement Pin
Rick York30-Apr-19 12:06
mveRick York30-Apr-19 12:06 
GeneralRe: Microsoft promises to boil down its lengthy and confusing privacy controls… in 1,500-word announcement Pin
Mark_Wallace4-May-19 6:39
memberMark_Wallace4-May-19 6:39 

General General    News News    Suggestion Suggestion    Question Question    Bug Bug    Answer Answer    Joke Joke    Praise Praise    Rant Rant    Admin Admin   

Use Ctrl+Left/Right to switch messages, Ctrl+Up/Down to switch threads, Ctrl+Shift+Left/Right to switch pages.