Understanding Microsoft Windows XP Service Pack 2
White Papers It discusses the details of buffer overflow prevention, network protection, and patching technologies in Windows XP SP2, and the deployment mechanisms to control each. The changes to Microsoft Windows Firewall, Automatic Updates, and the Windows...
[September 10, 2004, 0:00]
A Hardware-Software Platform For Intrusion Prevention
White Papers The key problem is that although a program at the beginning of its execution can be verified as authentic, its execution flow can be redirected to externally injected malicious code using, for example, a buffer overflow exploit.
[March 2, 2006, 23:00]
Cisco Security Agent Helps Columbus State University Combat Evolving Security Attacks
White Papers The security breach was an exploit of an extended procedure function buffer overflow of Microsoft SQL 7 and compromised three of CSU's critical servers. It aggregates multiple security functionalities combining host intrusion prevention...
[March 1, 2005, 23:00]
Cursor Flaw Throws Doubt On Vista Security
News The buffer overflow vulnerability in the cursor function in particular should have already been fixed because a bug in the same Windows component was patched two years ago, said Rohit Dhamankar, manager of security research at TippingPoint, a...
[April 4, 2007, 16:27]
White Hats Expose VoIP Security Threat
News On a laptop running Windows XP SP2 with a Windows firewall, running McAfee antivirus, Sipera product manager Sachin Joglekar demonstrated a vulnerability that allows a hacker to cause a buffer-overflow condition.
[August 7, 2007, 17:49]
Prevx Intrusion Detection Puts Agents On Desktops
News As an example, said Ray, the most common attack creates a buffer overflow, where an attacker is able to execute alien code on the target system: "There are thousands of these attacks around that are exploiting thousands of different...
[December 17, 2003, 11:40]
AMD Packs Security Into Chips
News A buffer overrun or overflow essentially overwhelms a computer's defence systems and then inserts a malicious program in memory that the processor subsequently executes. AMD's Athlon 64 and Opteron security features will work with Windows XP...
[February 25, 2004, 15:05]
Apple QuickTime Zero-day Flaw 'extremely Critical'
News With Internet Explorer versions 6 and 7, and the Safari 3 beta, the attack appears to be prevented because standard buffer overflow prevention processes act before any damage can be done, Florio wrote.
[November 26, 2007, 11:46]
Snort Hit By Vulnerability
News Reporting the weakness, an ISS report said: "Snort IDS and Sourcefire Intrusion Sensor IDS/IPS [intrusion-detection/prevention system] are vulnerable to a stack-based buffer overflow, which can result in remote code execution.
[February 21, 2007, 10:50]
Open Source Security Push Gets $20m
News Snort encountered security problems in October, with exploit code being published that demonstrated how vulnerabilities in a Snort sensor designed to detect an exploit tool called Back Orifice can be subject to a buffer overflow attack.
[June 2, 2006, 17:15]
Protecting Yourself From The MSBlast Worm
News When it finds one, it attempts to exploit the DCOM RPC buffer overflow, create a remote root shell on TCP port 4444, then use FTP to download a file called msblast.exe onto the infected computer. Prevention
[August 12, 2003, 10:15]
New Tool Camouflages Hacker Programs
News For example, an intrusion-detection system that watches out for a recent buffer overflow might recognise the attack by the text "http:///" appearing in the incoming data. Some) firewalls and intrusion prevention or other application-layer content...
[April 22, 2002, 9:11]
Preventing And Removing The Nachi Worm
News In addition, in order to spread faster, Nachi takes advantage of an older Microsoft flaw, the WebDav buffer-overflow flaw, which it does not bother to patch. Additionally, Nachi uses the WebDav buffer-overflow flaw to spread to other Windows NT 4.0...
[August 20, 2003, 10:15]
Sasser.a And Sasser.b: Prevention And Cure
News If the Sasser worm finds a vulnerable machine on a local network or the Internet, the worm sends a specially crafted packet to cause a buffer-overflow in lsass.exe. The overflow contains instructions in a script file, cmd.ftp, on the newly infected...
[May 5, 2004, 12:00]
