SEARCH RESULTS
 
Showing 1-10 of 104 records
 
Expand article

Advisory: CiscoWorks Arbitrary Code Execution Vulnerability

2008-05-29 01:56:52 by Dave Lewis in Liquidmatrix Security Digest
 
...Execution Vulnerability Release Date: 28 May 2008 Reference: LSD003-2008 Discover: Dave Lewis CVE Number: CVE-2008-2054 Vendor: Cisco Systems Systems Affected: CiscoWorks Common Services (various versions): Cisco Unified Operations Manager (CUOM), Cisco Unified Service Monitor (CUSM), CiscoWorks QoS Policy Manager (QPM), CiscoWorks LAN...
 
Tags: vulnerability, cisco, cisco systems, cisco advisory, cisco security manager, vulnerability exists due, execute arbitrary code, ciscoworks common services, security
 
 
 
 
Expand article

Using Data Execution Prevention (DEP) in Windows XP and Vista: Fighting back against buffer overflows and memory corruption

2008-06-09 00:36:29 by Editor in Irongeek's Security Site
 
...Execution Prevention (DEP) in Windows XP and Vista: Fighting back against buffer overflows and memory corruption Ive recently become interested in measures that modern CPUs can take to prevent various types of memory corruption attacks. One such feature is the NX bit (as AMD calls it, XD is Intels term), which allows for memory pages to me...
 
Tags: dep, data execution prevention, memory corruption, windows, configure dep protection, configure, memory corruption attacks, vista, buffer overflows
 
 
 
 
Expand article

Using Data Execution Prevention (DEP) in Windows XP and Vista: Fighting back against buffer overflows and memory corruption

2008-06-09 00:36:29 by Editor in Irongeek's Security Site
 
...Execution Prevention (DEP) in Windows XP and Vista: Fighting back against buffer overflows and memory corruption Iâve recently become interested in measures that modern CPUs can take to prevent various types of memory corruption attacks. One such feature is the NX bit (as AMD calls it, XD is Intelâs term), which allows for memory pages to...
 
Tags: dep, data execution prevention, memory corruption, windows, configure dep protection, configure, memory corruption attacks, vista, buffer overflows
 
 
 
 
Expand article

New Firefox 3.0 Is Vulnerable To High-Severity Code Execution

2008-06-19 02:10:52 by CyberInsecure in CyberInsecure.com
 
Code execution vulnerability found in latest Firefox 3.0 could allow an attacker to execute arbitrary code, permitting the attacker to completely take over the vulnerable process, potentially allowing the machine running the process to be completely controlled by the attacker. The flaw found in Firefox 3.0 is considered a high-severity risk and...
 
Tags: firefox, vulnerable process, process, execute arbitrary code, code execution vulnerability, attacker, completely, high-severity risk, affects
 
 
 
 
Expand article

Remote Code Execution Through Intel CPU Vulnerability Will Be Presented In Hack In The Box Security Conference

2008-07-15 13:37:46 by CyberInsecure in CyberInsecure.com
 
Intel CPUs have exploitable bugs which are vulnerable to both local and remote attacks which works against any OS regardless of the patches applied or the applications which are running. Kris Kaspersky, author of numerous books on reverse engineering and software engineering, will be presenting his research on remote code execution through Intel...
 
Tags: remote code execution, intel cpu bugs, numerous books, kris kaspersky, exploitable bugs, intel cpus, remote attacks, research, applications
 
 
 
 
Expand article

Congress Cuts Darpa Budget for 'Poor Execution'

2008-09-25 11:00:00 by Noah Shachtman in Wired Security
 
Congress chops $130 million out of Darpa's budget for next year, citing "poor execution" of funded projects. What's up? One contingent says the Pentagon research agency wasn't spending the cash it was given; another that Darpa is being punished for holding its contractors accountable for their work
 
Tags: poor execution, darpa, pentagon research agency, congress chops, budget, contractors accountable, projects, million, contingent
 
 
 
 
Expand article

Microsoft Releases Nine Security Updates for Windows, Office

2007-08-14 13:30:25 by Editor in Cheap Hack
 
...Execution Critical: MS07-043Vulnerability in OLE Automation Could Allow Remote Code Execution Critical: MS07-044Vulnerability in Microsoft Excel Could Allow Remote Code Execution Critical: MS07-045Cumulative Security Update for Internet Explorer Critical: MS07-046Vulnerability in GDI Could Allow Remote Code Execution Important:...
 
Tags: remote code execution, windows, critical, include critical vulnerabilities, security, critical vulnerability, microsoft, windows media player, windows gadgets
 
 
 
 
Expand article

Anti-Debugging Series - Part I

2008-12-02 20:56:25 by Tyler Shields in Zero in a bit
 
...execution. Occasionally these exceptions can even crash or terminate a process when run under a debugger and be handled gracefully when running clean. It is these discrepancies that makes exception based anti-debugging techniques possible Process and Thread Block Anti-Debugging Some of the API based anti-debugging methods use published...
 
Tags: process execution breaks, execution, process, methods query process, hardware breakpoint, hardware, process information, target process, methods
 
 
 
 
Expand article

Apple Finally Patches DNS Bug

2008-07-31 23:12:34 by Editor in Cheap Hack
 
...execution CoreGraphics2 bugs, both code execution, one for malicious graphics the other for malicious PDFs Data Detectors EngineEngine may crash when parsing maliciously crafted content Disk UtilityA local user may obtain System privileges OpenLDAPAn ASN parsing bug can lead to a crash OpenSSLA range checking error from last September (Red...
 
Tags: code execution, remote code execution, bug, potential code execution, lead, data detectors engineengine, bugs, microsoft office file, elevation bug