Previous
ECTS: T-Buffer from 3dfx on show
News Although the company is unusually coy about the nuts and bolts underlying its much-heralded T-Buffer technology, the stand proudly demonstrated the cinematic effects to a throng of youthful visitors hard-pushed to gain entry into any 18-cert showing.
[September 6, 1999, 11:28]
3Dfx unveils new 3D graphics tech
News Known as the T-buffer, the new hardware technology allows effects such as anti-aliasing (for smoothing the jagged look of 3D images), motion blurring (emulating the effect of movement too fast for the "camera") and depth of field blur (foreground...
[August 2, 1999, 10:29]
Why you must install a firewall -- now review
Reviews MSBlast, the worm that exploited the buffer overflow in Windows' DCOM RPC protocol, wasn't the sort of email-borne pest that anti-virus software is good at catching. The buffer overflow, in turn, could replace part of a program's original code with...
[October 17, 2003, 11:30]
Want secure IE? Then upgrade to XP...
Talkback Unfortunately that just isn’t true, if I inject code into firefox using a buffer overflow, I can get it to do pretty much whatever I like including download various malware apps. So if a buffer overflow vulnerability is found in Firefox, it’s some...
[October 8, 2004, 15:23]
Libsafe guards against Linux hijackers
News Libsafe checks the current stack and sets a realistic limit so that the buffer can't be overwritten. In a buffer overflow, a section of memory corresponding to a variable used by a program is overwritten.
[August 7, 2002, 8:52]
The Sky(pe) is falling review
Reviews So it didn't surprise me to read last week that a new buffer overflow vulnerability was found within the very popular Skype VoIP service. If an attacker creates a special URL, one using callto:// or skype://, a buffer overflow may occur.
[October 31, 2005, 14:35]
First virus hits 64-bit Windows
Talkback The DEP or NX enhancements to AMD64 processors and which should be in Intel processors next year, are, as far as I am aware, for buffer overruns and programs trying to illegally execute code which has been hidden in data segments.
[August 24, 2004, 10:23]
Processor benchmarks: Intel versus AMD
Talkback The intel is running a Maxtor 40 GB, 2 MB buffer with 512 MB of DDR 400 memory. The Athlon is running a Western Digital 80 GB, 8 MB buffer with 768 MB DDR 333 because thats the max it can go. Turns out the 3000 is mean't to be the equivalent of an...
[March 8, 2005, 8:44]
Stop intruders exploiting applications
News Working in Visual Basic, Visual Basic.Net, C#, Java, or one of a dozen other languages means that you don't have to worry about buffer overflows internally in your applications. Most people working in languages today take a relatively carefree...
[February 9, 2004, 9:45]
IE bug crashes browsers
News It doesn't look like a buffer overflow.if anything (the code is) not giving Internet Explorer information that it's expecting and that's what's causing the problem," Gillespie said. Unlike a buffer overflow, the glitch may turn out to be harmless...
[April 17, 2003, 8:59]
Processor benchmarks: Intel versus AMD
Talkback The intel is running a Maxtor 40 GB, 2 MB buffer with 512 MB of DDR 400 memory. The Athlon is running a Western Digital 80 GB, 8 MB buffer with 768 MB DDR 333 because thats the max it can go. Turns out the 3000 is mean't to be the equivalent of an...
[March 7, 2005, 19:36]
Processor benchmarks: Intel versus AMD
Talkback The intel is running a Maxtor 40 GB, 2 MB buffer with 512 MB of DDR 400 memory. The Athlon is running a Western Digital 80 GB, 8 MB buffer with 768 MB DDR 333 because thats the max it can go. Turns out the 3000 is mean't to be the equivalent of an...
[December 30, 2004, 21:34]
Can OpenBSD really eliminate buffer over-runs?
News Of course, this heavy incidence of buffer overruns isn't unique to OpenBSD or even to Unix. Tackling one of the most commonly reported causes of vulnerabilities, the OpenBSD project recently announced that a major effort has been put into place to...
[April 28, 2003, 7:54]
Microsoft is forced to issue SSL patch for IE
News Buffer Overrun in Gopher Protocol Handler (CAN-2002-0646) (Note: Details on this candidate hadn't been posted on the CVE list at the time of this writing.Buffer Overrun in Legacy Text Formatting ActiveX Control (CAN-2002-0647)XML File Reading via...
[September 9, 2002, 16:59]
Could stolen Microsoft code lead to more security mishaps?
News The biggest and best hacks right now are buffer overflows," says Dr Neil Barrett, senior security analyst with security firm IRM. A buffer overflow allows a malicious user to work around the inherent security of a piece of software by sending an...
[October 27, 2000, 15:07]
New cumulative Microsoft patch fixes two critical threats
News On Windows 2000 systems, the attacker will also need to know the location of the buffer in memory, and this information isn't available from Win2K. Microsoft has also released two other bulletins, MS02-016 (blocking Group Policy) and MS02-017...
[April 16, 2002, 17:03]
Microsoft aims to increase time between patches
News We want to change the rules so even when a hacker can exploit a buffer overrun he can’t do anything material with it," said Stathakopoulos. It was a buffer overrun and it scanned for other systems to infect.
[November 18, 2004, 11:35]
Redmond hails lifecycle security programme
News Tools like strcopy, strncopy that are really hard to get right, and inherently unsafe as they don't check buffer sizes. The flag helps stop the buffer overflow attacks which are among the most common security vulnerabilities.
[September 2, 2005, 16:05]
Perl warnings toned down
News Typically in Perl you don't have to worry about buffer overruns. The sprintf bug fixes the problem that could cause a buffer overflow and unlock a vulnerable system for an attacker. These updates ensure that such flaws can't be used as a conduit to...
[December 16, 2005, 9:10]
Spat over MS 'flaw' gets heated
News At least they are putting run-time checking for buffer overruns, which you don't find in other (Windows) compilers," said Chris Wysopal, director of research and development for digital security firm @Stake.
[February 18, 2002, 13:03]
