The Latest in IT Security

Posts Tagged ‘heap’

CVE-2012-0003 Exploit ITW

28
Jan
2012

S. Korean handlers are slow to take down the publicly distributed malicious code exploiting CVE-2012-0003, a vulnerability patched in Microsoft’s January 2012 patch release MS12-004. We have discussed with reporters that the code has been available since the 21st, and a site appears to have been publicly attacking very low numbers of Korean users over […]

Category General Written by Securelist / Blog 0 Comments

Read more ...

MIDI exploit in the wild

27
Jan
2012

Symantec Security Response is aware of in-the-wild malware exploiting the Microsoft Windows Media Player 'winmm.dll' MIDI File Parsing Remote Buffer Overflow Vulnerability (BID 51292). Microsoft has already issued a patch against this vulnerability in the monthly patch release this January. Applying the patch is strongly recommended. There are several components involved in this live attack: […]

Category General Written by Symantec Security Response Blog 0 Comments

Read more ...

HeapLocker: Preventing Heapsprays

18
Oct
2011

I’ve been using my HeapLocker tool for almost a year now, and I’ve encountered no issues, except for the NOP sled detection. When used with Adobe Reader, HeapLocker will generate too many false positives when looking for NOP sleds. So I’ve disabled NOP sled detection for Adobe Reader.The last feature I want to talk about […]

Category Security Written by Didier Stevens 0 Comments

Read more ...

« Older Entries
Newer Entries »

Categories

MONDAY, FEBRUARY 24, 2025
WHITE PAPERS

Mission-Critical Broadband – Why Governments Should Partner with Commercial Operators:
Many governments embrace mobile network operator (MNO) networks as ...

ARA at Scale: How to Choose a Solution That Grows With Your Needs:
Application release automation (ARA) tools enable best practices in...

The Multi-Model Database:
Part of the “new normal” where data and cloud applications are ...

Featured

Archives

Latest Comments