code execution Resources

Sponsored White Papers, Webcasts, and Downloads

ZDNet Resources

Code execution vulnerability found in Firefox 3.0: Code execution vulnerability found in Firefox 3.0Same Situation. Different Day. ;)ntOr put your FF3 in a sandboxI show how to make your Firefox browser session safe and secure.Read [url=http://www.dtschmitz.com/dts/2008/05/is-it-safe.html]Is It Safe?[/url]Thanks and Be Safe.Dietrich T. Schmitz[i]Linux IT Consultant[/i]RE: Code execution vulnerability found in Firefox 3.0please read this post:http://robert.accettura.com/blog/2008/06/18/zero-day-vulnerability/Here's the...; Tags: Web browsers, SECURITY, Mozilla Firefox, vulnerability, Code execution vulnerability, Mozilla Firefox 3.0, Code Execution; Discussion threads 2008-06-18
Apple plugs eight more QuickTime holes: Apple today shipped its fifth QuickTime security update for 2007, patching at least eight vulnerabilities that could cause code execution attacks on Mac OS X, Windows XP and Windows Vista systems.The skinny, according to this Cupertino alert:CVE-2007-2295 -- A memory corruption issue exists in QuickTime's handling of H.264 movies....; Tags: Apple, Botnets, Browsers, Data theft, Exploit code, Metasploit, Microsoft, Mozilla, Passwords, Patch Watch, Pen testing, Responsible disclosure, Rootkits, Spam and Phishing, Spyware and Adware, Viruses and Worms, Vulnerability research, Zero-day attacks; Blog posts 2007-07-11
Serious QuickTime bugs bite Windows Vista, Mac OS X: Multiple flaws in Apples QuickTime media player could put millions of Windows and Mac users at risk of code execution attacks, Apple confirmed in an advisory issued today.A mega-update from Cupertino plugs a total of eight code execution vulnerabilities in QuickTime, all affecting Windows Vista, Microsofts new operating system. The...; Tags: Digital rights management, Pen testing, Viruses and Worms, Exploit code, Spyware and Adware, Spam and Phishing, Vulnerability research, Rootkits, Windows Vista, Microsoft, Apple, Patch Watch, Hackers; Blog posts 2007-03-05
Apple fixes iChat, Finder (MoAB) flaws: Apple has started fixing security holes exposed during Januarys MoAB Month of Apple Bugs project. A software update from Cupertino today provides cover for a pair of flaws in iChat and a code execution vulnerability in Finder. All three vulnerabilities were publicly disclosed by L.M.H. and Kevin Finisterre,...; Tags: Apple, Exploit code, Hackers, Microsoft, Patch Watch, Responsible disclosure, Vulnerability research, Zero-day attacks; Blog posts 2007-02-15
Apple patches 20 security holes: Apple computer on Wednesday 3/2/2006 patched 20 security holes ranging from denial-of-service to very serious code execution flaws. Apple's security update 2006-001 fixes the following issues in OS X 10.3.9 to 10.4.5:Multiple PHP 4.4 issues in apache_mod_php. OS X File server DoS or arbitrary code execution with automount. Directory...; Tags: OS 10.4.5, flaw, code execution, operating system; Blog posts 2006-03-02

Additional Resources

iPhone gas application roundup: On 18 June 2008 I published my iPhone app wishlist and I'm happy that most of my most requested applications have been released (Thank you Texas Hold'Em!). Two my most request applications dealt with fuel, specifically a fuel economy tracker and a cheap gas finder. Several iterations...; Tags: Apple iPhone, Vehicle, MPG, AccuFuel, Gas Finder, Roi/Tco, GPS, 3G, Handhelds, Finance, Managerial Accounting, Consumer Electronics, Personal Technology, Cellular Phones, Hardware, Jason D. O\'Grady; Blog posts 2008-07-25
Gaping holes in RealPlayer patched: Digital media delivery firm RealNetworks has shipped a high-prority patch to cover four gaping holes in its flagship RealPlayer software, warning that the vulnerabilities could put users at risk of code execution attacks. The patch comes a few hours after Secunia released an advisory warning for one...; Tags: Vulnerability, RealNetworks Inc., RealNetworks RealPlayer, Digital Music, Digital Media, Security, Personal Technology, Consumer Electronics, Ryan Naraine; Blog posts 2008-07-25
Microsoft joins 'patch DNS now' chant; Apple patch missing: On the heels of the release of weaponized exploit code for the DNS cache poisoning vulnerability, Microsoft has joined the chorus of security pros pleading with DNS server providers to immediately apply patches to protect users from malicious attacks. The Redmond, Wash. security...; Tags: Apple Macintosh, DNS, Vulnerability, Apple Inc., Exploit Code, Microsoft Corp., Attack, Dan Kaminsky, Domain Names, Apple Mac OS X, Networking, Security, Internet, Operating Systems, Software, Apple Mac OS, Ryan Naraine; Blog posts 2008-07-25
Heap-based buffer overflow reported in RealNetworks RealPlayer: Update 07/25/2008: Aaron Portnoy of TippingPoint's security research group was kind enough to point out that I'm actually not affected by this, since I've installed the newest version of RealPlayer. From Aaron's email: Notice the Secunia advisory states it affects RealPlayer 10.5... the latest is 11.x, which now uses...; Tags: Vulnerability, RealNetworks Inc., Buffer-overflow, RealNetworks RealPlayer, Secunia Research, Vendor, Digital Music, Digital Media, Personal Technology, Consumer Electronics, Nathan McFeters; Blog posts 2008-07-25
Kaminsky suggests long-term fix will still have to be determined, but patch now, or pay soon: Kaminsky suggests long-term fix will still have to be determined, but patch now, or pay soonTTLSomething I wish I'd asked during the webcast and which I can't quite get my head around:It was said that setting a long TTL doesn't help because of the way delegation works - has to...; Tags: Domain names, DNS server, TTL, server, Kaminsky; Discussion threads 2008-07-24
Another student hacks another police website: Another student hacks another police websiteRE: Another student hacks another police websitethey should probably code their site correctly with decent form validatation and revalidation, so that SQL injection attacks like this don't work. It's not that hard!; Tags: Web site development, Web technology, police website, Web site; Discussion threads 2008-07-24
Intel launches new chip for consumer electronics: In its latest bid to expand beyond PCs and servers into industrial and consumer electronics applications, Intel has announced a new family of embedded processors. These chips are not based on the Atom processor already used in netbooks and Mobile Internet Devices MIDs--those versions won't arrive until...; Tags: Consumer Electronics, Electronics, Intel Corp., Chip, Atom, SoCs, Semiconductors, Network Technology, Processors, Hardware, Networking, Components, John Morris; Blog posts 2008-07-24
Ingres gives Fortify security study a good fisking: Open source projects in Fortify's Open Review report fewer defects per thousand lines of code than proprietary products in the same review. by Dana Blankenhorn; Tags: Ingres, Databases, Security, Enterprise Software, Software, Data Management, Dana Blankenhorn; Blog posts 2008-07-24
Forrester: Vista is 'New Coke' in the enterprise; Firefox, Apple gain a little: Forrester: Vista is 'New Coke' in the enterprise; Firefox, Apple gain a littleNew Coke?Actually, given the way it has been and is being sold, is it not the New Kool-Aid?With Vista selling so well already ...... as shown in revenues from the previous quarter, Microsoft can expect to gain substantially...; Tags: Microsoft Windows Vista (Longhorn), Operating systems, Mozilla Firefox, Forrester Research Inc., Microsoft Windows Vista, Apple Mac OS X, Mendel, Apple Inc.; Discussion threads 2008-07-24
Childs rigged crazyquilt private network: The prosecution unveiled more details on the lunacy in San Francisco in court filings that urged the judge to keep rogue network administrator Terry Childs' bail at $5 million. The Chronicle reports that prosecutors say that Childs had over 1,000 modems secreted around the city, forming his own private network...; Tags: Network, Prosecutor, Networking, Productivity, Richard Koman; Blog posts 2008-07-24
Students: the broadband troubleshooter: Student? Moved out of halls? Ready to move into your new student digs? Heads up. Following on from my series of harrowing entries regarding my broadband trouble, it's about time I sat you down and explained a few things about ISP's, phone lines, telecoms...; Tags: Tenant, Phone, Broadband, Phone Line, Internet Service Provider, Tag, Internet Service Providers (ISPs), Telecom & Utilities, Telecommunications, Internet, Zack Whittaker; Blog posts 2008-07-24
Ballmer does Windows; Johnson joins Juniper: Ballmer does Windows; Johnson joins JuniperAlso.....Is he really the "face" you want for Vista? Let's be honest here Balmer is not loaded with charisma or well anything that makes one want to buy from him. Stay away from him maybe but buy? heh heh heh Just saying.....Pagan...; Tags: Sales strategy, Steve Ballmer, Microsoft Windows, Vista! Hurrah, product people, Microsoft Corp., Microsoft Windows Vista, Juniper Networks Inc.; Discussion threads 2008-07-24
News to know: DNS flaw; Amazon; Microsoft shakeup; Facebook: Notable headlines: Ryan Naraine: Researchers borrow from Google PageRank for network defense service Attack code published for DNS flaw Nate McFeters: |)ruid and HD Moore release part 2 of DNS exploit 'Spam King' escapes from federal prison iPhone vulnerable to phishing,...; Tags: Apple iPhone, Facebook, DNS, Amazon.com Inc., Microsoft Corp., Microsoft Xbox, Flaw, Game Players, Domain Names, Networking, Security, Consumer Electronics, Personal Technology, Internet, Larry Dignan; Blog posts 2008-07-24
DTrace and the Linux bunker mentality: DTrace and the Linux bunker mentalityBecause it is the Linux way Paul1) Take something good and copy it badly.2) Never, ever listen to anyone offering advice regarding usability [i]"Linux ain't no Fisher Price OS"[/i] etc.3) Spend more time arguing on the mailing lists, than actually developing and bug-testing.RE: DTrace and...; Tags: OPEN SOURCE, Operating systems, UNIX, DTrace, SCO Group Inc., Linux; Discussion threads 2008-07-24
Code Diffs for DNS Exploit Code: Diffs between revisions of the exploit code released by HDM and |)ruid. Generated by Billy Rios. by Nathan McFeters; Tags: Revision, DNS, Exploit Code, Domain Names, Networking, Internet, Nathan McFeters, diffs, code, Exploit, HDM, |)ruid, Billy, Rios, McFeters, Nate, Nathan, screenshots; Image galleries 2008-07-23