Jump to content

Michał Zalewski

From Wikipedia, the free encyclopedia

This is an old revision of this page, as edited by Jruderman (talk | contribs) at 00:09, 19 August 2015. The present address (URL) is a permanent link to this revision, which may differ significantly from the current revision.

(diff) ← Previous revision | Latest revision (diff) | Newer revision → (diff)

For people with similar names, see Michael Zalewski (disambiguation).

Michał Zalewski (born 19 January 1981), also known by the user name lcamtuf is a "white hat" hacker, computer security expert from Poland and a Google Inc. employee.

He has been a prolific vulnerability researcher and a frequent Bugtraq poster since mid-1990s, and has authored a number of programs for Unix-like operating systems. In 2005, Zalewski authored Silence on the Wire: A Field Guide to Passive Reconnaissance and Indirect Attacks, a computer security book published by No Starch Press and subsequently translated to a number of languages. In 2011, Zalewski authored The Tangled Web: A Guide to Securing Modern Web Applications, also published by No Starch Press.

For his continued research on browser security, he was named one of the 15 most influential people in security^[1] and among the 100 most influential people in IT.^[2]

Zalewski was one of the original creators of Argante, a virtual open source operating system. Among other projects, he also created p0f and american fuzzy lop.

Reported bugs

Notable vulnerabilities

"Manipulation of framed content can allow cross-site scripting". Opera Advisories. Retrieved January 24, 2012.
"CA-2003-25 Buffer Overflow in Sendmail". CERT Advisories. Retrieved August 22, 2005.
"CA-2003-12 Buffer Overflow in Sendmail". CERT Advisories. Retrieved August 22, 2005.
"CA-2001-09 Statistical Weaknesses in TCP/IP Initial Sequence Numbers". CERT Advisories. Retrieved August 22, 2005.
"VU#945216 SSH CRC32 (...) Contains Remote Integer Overflow". CERT Advisories. Retrieved August 22, 2005. This vulnerability made an appearance on The Matrix Reloaded.^[clarify]
"VU#965206 Microsoft Internet Explorer (...) vulnerable to buffer overflow". CERT Advisories. Retrieved August 22, 2005.
"VU#984473 Microsoft Internet Explorer contains overflow in processing script action handlers". CERT Advisories. Retrieved August 22, 2005.

Other vulnerabilities

Firefox wyciwyg:// cache vulnerability

References

^ "15 Most Influential People in Security Today". Retrieved December 11, 2008.
^ "100 Most Influential People in IT". Retrieved December 11, 2008.

External links

Template:Persondata

This Polish biographical article is a stub. You can help Wikipedia by expanding it.

This article about a computer specialist of Europe is a stub. You can help Wikipedia by expanding it.

Retrieved from "https://en.wikipedia.org/w/index.php?title=Michał_Zalewski&oldid=676759286"