Well, at least Sourcefire was able to discover this bug on its own. A stack-based buffer overflow attack can be carried out by presenting a Snort instance with specially crafted DCE/RPC traffic. It’s recommended that all users upgrade to the latest version (2.6.1.3), or at least disable the DCE/RPC preprocessor in snort.conf. It’s nice to [...]
I attended a Microsoft event for developers today, where they showed off a lot of the fancy new user interface features available with Vista. Even if you are running XP, you can install the Net 3.0 Framework and get a lot of the same effects, since they’re based on the Windows Presentation Framework. One of [...]
There’s an interesting vulnerability with JBoss when its administrator access has been misconfigured. I believe it comes that way out of the box, so this could be an issue. I came across this on Bugtraq, and luckily some remediation steps are available.
AACS (Advanced Access Content System), the security standard used to enforce Digital Rights Management on new high definition media has been cracked. That didn’t take long at all! We all know the DRM used in old school DVDs has been cracked forever, but now the new and improved security used in HD DVD and Blu-ray [...]
A (former) security guy at Sandia Labs, Shawn Carpenter, was fired for “backhacking” systems that he detected attacks from. “Backhacking occurs when networks are attacked and someone on the hacked network responds with a counterhack or attack.” Even though he was cooperating with the FBI and Army Research Lab on the investigations, Sandia did not [...]
