Digital crims don't take holidays
They spend all of their time hacking and harming society.
Cisco's security team's holiday season has ended with a bang: 18 patches, but thankfully only one of them rated “critical”. Switchzilla's E-mail Security Appliance's AsyncOS operating system has the honour of 2019's first-and-worst in CVE-2018-15453. The bug affects how the appliance handles S/MIME-signed e-mails. If the …
Under what circumstances should a mal formed message ever attempt to be processed rather than discarded?
Another classic failure of a SW development pattern.
*Hint. If the protocol can be expressed in a state diagram design the core of the handler in an FSA design tool and have it write the actual code.
Just how many message protocols are so complex they need a Turing complete language to handle all the possibilities?