Previous
Transmeta adds buffer-overflow protection at chip level
News The "No Execute", or NX, technology is designed to help prevent a buffer overflow, a type of attack that involves overwhelming a computer's defence systems and inserting a malicious program in buffer, or temporary, memory.
[May 18, 2004, 9:00]
OpenBSD 3.9 released
News The OpenBSD project on Monday released version 3.9 of its open source operating system, which offers improvements including a new sensor framework and better buffer overflow protection. The OS has also introduced fully enabled randomised memory...
[May 3, 2006, 11:20]
Chips to fight viruses
News Execution Protection by AMD, technology contained in AMD's Athlon 64 chips, prevents a buffer overflow, which is a common method used to attack computers. A buffer overflow essentially overwhelms a computer's defence systems and then inserts a...
[January 9, 2004, 7:45]
Microsoft puts the finishing touches on SP2
News He explained that Microsoft faces a dilemma over buffer overflow protection. Microsoft initially turned on buffer overflow protection in SP2, but this caused problems in certain applications, so they turned it off again.leaving users to decide when...
[July 2, 2004, 12:00]
OpenBSD releases version 3.3
News The OpenBSD project leader, Theo de Raadt, announced the planned inclusion of the stack protection technology aimed at mitigating buffer overflow vulnerabilities -- the most ubiquitous type of security glitch -- at the RSA security conference in...
[May 1, 2003, 11:25]
Most UK companies 'still vulnerable' to blended attacks
News Earlier this month, Microsoft announced it has enhanced the memory protection in Windows XP in order to reduce the operating system's vulnerability to buffer overflow exploits, but the enhancement will only be available as part of Service Pack 2...
[October 29, 2003, 15:45]
Windows XP SP2 more secure? Not so fast review
Reviews A buffer overflow is the method the Sasser worm used to infect PCs. To fully block the aforementioned buffer overflow and the Internet worms that feed on them you'll need to follow fine print: turns out the necessary No Execute (NX) setting isn't...
[August 17, 2004, 13:55]
AMD claims to deliver on SP2
News Together, the two features are designed to close off a common method of attack called a buffer overflow. A buffer overflow attack essentially overwhelms a computer's defence systems and then inserts a malicious program into memory, allowing the...
[August 10, 2004, 8:55]
OpenBSD 3.9 adds sensor framework
News This feature ensures that when a program runs it does not always allocate memory in the same place, and therefore offers protection against buffer-overflow attacks. Open BSD 3.9 will include a new sensor framework to allow system administrators to...
[March 24, 2006, 8:30]
Microsoft accelerates Windows security update
News Security is now the number one priority for Microsoft and that will be demonstrated with SP2, he said, revealing that the update will contain enhanced memory protection in an attempt to reduce the operating system's vulnerability to buffer...
[October 15, 2003, 13:35]
Broadcom kernel exploit affects many laptops
News The Broadcom Wireless Driver Probe Response SSID Buffer Overflow exploit is at kernel level, allowing an attacker to compromise and fully control a machine, according to malware alert company Secunia.
[November 13, 2006, 16:01]
Why you must install a firewall -- now review
Reviews MSBlast, the worm that exploited the buffer overflow in Windows' DCOM RPC protocol, wasn't the sort of email-borne pest that anti-virus software is good at catching. In July, for example, Microsoft reported and patched a buffer-overflow...
[October 17, 2003, 11:30]
Browsers beware: new holes in IE and Flash
News Flash Player versions prior to 6.0.40.0 have a buffer overflow vulnerability (MPSB02-09) due to the way they treat malformed headers. Flash Buffer Overflow - serious The Flash overflow vulnerability (MPSB02-09) is especially dangerous because it is...
[August 27, 2002, 12:24]
HP threatens researchers with DMCA
News Ferson also said that HP reserves the right to sue SnoSoft and its members "for monies and damages caused by the posting and any use of the buffer overflow exploit. HP hereby requests that you cooperate with us to remove the buffer overflow exploit...
[July 31, 2002, 12:15]
Cursor flaw throws doubt on Vista security
News But Dhamankar argues that Microsoft forgot to recheck all the possibilities that could lead to a buffer overflow after the original bug was found and patched in 2005. The buffer overflow vulnerability in the cursor function in particular should...
[April 4, 2007, 16:27]
Your antivirus software has B.O. review
Reviews In July, Sophos admitted a buffer-overflow flaw in its antivirus protection. A few weeks ago, the Spanish antivirus vendor Panda had to deal with a serious problem: there was a buffer-overflow error within its antivirus library.
[December 12, 2005, 10:35]
How cooperation can beat viruses
Talkback A new protection technique exists that stops Buffer Overflow (BOF) exploit code on all un-patched Windows NT based platforms. It provides a similar type of protection as is provided with ACL in recent Windows platforms.
[April 16, 2004, 19:27]
Security tightened after 'Needlepoint' virus
News Buffer overflow We started with network protection, focusing on the networks and gateways. Misuse of resourcesThree types of protection: We installed a software package that focused on the protection of the network access points.We installed...
[November 15, 2002, 19:31]
Microsoft denies data execution problem
News The security company said that two minor mistakes in the implementation of the technology could allow a knowledgeable programmer to sidestep the measures, known as the Data Execution Protection and the Heap Overflow Protection.
[February 2, 2005, 8:50]
Back Orifice problems lead to pain for Snort
News The exploit code, published on the Web by FrSirt on Tuesday, demonstrates how vulnerabilities in a Snort sensor designed to detect an exploit tool called Back Orifice can be subject to a buffer overflow attack.
[October 27, 2005, 9:45]
