One new feature of “Web 2.0″, the movement to build a more responsive Web, is the utilization of XML content feeds which use the RSS and Atom standards. These feeds allow both users and Web sites to obtain content headlines and body text without needing to visit the site in question, basically providing users with a summary of that sites content. Unfortunately, many of the applications that receive this data do not consider the security implications of using content from third parties and unknowingly make themselves and their attached systems susceptible to various forms of attack.
Read the rest of this entry »
Microsoft Windows Vista, like previous versions, supports animated mouse pointer. The animated mouse pointers are loaded from .ANI files by the functions from USER32.DLL called LoadCursorIconFromResource and LoadCursor. These functions use an internal function called _LoadCursorIconFromFileMap which, under certain conditions, is prone to a buffer overflow
Read the rest of this entry »
Buffer Overflows: Attacks and Defenses for the Vulnerability of the Decade
07 Mar
Posted by jj as Security
Buffer overflows have been the most common form of security vulnerability for the last ten years. More over, buffer overflow vulnerabilities dominate the area of remote network penetration vulnerabilities, where an anonymous Internet user seeks to gain partial or total control of a host. If buffer overflow vulnerabilities could be effectively eliminated, a very large portion of the most serious security threats would also be eliminated.
Read the rest of this entry »
Defeating the Stack Based Buffer Overflow Prevention Mechanism of Microsoft Windows 2003 Server
07 Mar
This paper presents several methods of bypassing the protection mechanism built into Microsoft’s Windows 2003 Server that attempts to prevent the exploitation of stack based buffer overflows. Recommendations about how to thwart these attacks are made where appropriate. Introduction Microsoft is committed to security. I’ve been playing with Microsoft products, as far as security is concerned, since 1997 and in the past year and a half or two I’ve seen a marked difference with some very positive moves made. In a way they had to. With the public relations crisis caused by worms such as Code Red Microsoft needed to do something to stem the flow of customers moving away from the Windows OS to other platforms.
Read the rest of this entry »
A potential security vulnerability has been discovered in Oracle Internet Directory (OID). OID release 2.1.1.0.0 is vulnerable to a potential buffer overflow problem which may permit unauthorized access to the operating system. Products Oracle Internet Directory (OID) release 2.1.1.0.0 On Unix platforms 1. Change the ownership of executable “ oidldapd”from root user to the UNIX user who owns the OID installation in the operating system. 2. Set the file permissions on “ oidldapd”to 710. 3. Change the ownership of executable “ oidmon”from root user to the UNIX user who owns the OID installation in the operating system.
Read the rest of this entry »
Vulnerabilities in Oracle9 i Application Server Web Cache
06 Sep
Posted by jj as Hardware, Web Server
Oracle Security Alert #27. Reference date: 28 December 2001. Vulnerabilities in Oracle9i Application Server. Web Cache. Products. Oracle9iAS Web Cache
Read the rest of this entry »
Categories
Archives
- October 2009
- September 2009
- August 2009
- July 2009
- June 2009
- May 2009
- April 2009
- March 2009
- February 2009
- January 2009
- December 2008
- November 2008
- October 2008
- September 2008
- August 2008
- July 2008
- June 2008
- May 2008
- April 2008
- March 2008
- February 2008
- January 2008
- December 2007
- November 2007
- October 2007
- September 2007
- August 2007
- July 2007
Today's Search Terms:
- vw golf 5 tdi service - ford galaxy online manual - honda motorcycle owners manual download free - renault laguna repair manual pdf - download vw beetle workshop manual - bmw r 1150 r katalog pdf - Download Canon Pixma 1700 Software - max payne 2 full indir - 1988 camaro fuse box diagram - free sap ebooks - free polo repair manual 1 4 1996 - download STATA analysis - honda outboard repair manual download - free service manual honda motorcycle cr125 2005 - stronghold crusader free hack dowloand - data book engine wv golf3 1 6i - E-learning project vb net free download - what is vista ultimate activation key code free - free online pontiac firebird parts diagrams - bmw e38 owners manuel - wiring diagram tdi vw - audi concert iii manual 2008 - audi tt owners manual pdf -ebay -dealtime -lycos -yahoo -kelkoo -edirectory -ciao -pricegrabber -newegg - downloads PT Cruiser Service Manual pdf - bmw Automotive Repair Manuals 1999 - 2005 rapidshare - downloads PT Cruiser Service Manual pdf - 3d environment scene files in maya free download - free diesel marine engine manual - peugeot 306 manual free download - mercedes stereo wiring schematic mlMost Popular
- iPod shuffle User's Guide (Manual)
- Renault Workshop Repair Manual PDF
- VolksWagen Golf and Jetta Routine Maintenance and Servicing Manual
- VolksWagen Golf & Jetta Service and Repair Manual
- Volkswagen Beetle Manual PDF
- Hacking the XBOX 360 for Noobs Tutorial
- VW Golf and Jetta Braking System PDF Manual
- Renault Workshop Repair Manual PDF
- VolksWagen Golf III / Jetta III Wiring Diagram Manual
- Renault All Types Service Manual PDF
Random Posts
- Microsoft Network Client Version 2.2 Users Guide for MS-DOS Clients
- BF2 Single Player Editor Tutorial
- iMIV Installation Manual
- Nokia N95 User guide
- Dell Laser Printer 1710 & 1710n
- Battalion Wars Instruction Manual pdf
- Installation Instructions for FORD FOCUS PDF
- mind performance hacks tips and tools for overclocking
- Implementing a Texture Caching System
- MySQL Magazine
Free Ebook Manual Download is proudly powered by WordPress - BloggingPro theme by: Design Disease
