Showing posts with label Vulnerability Discovery. Show all posts
Showing posts with label Vulnerability Discovery. Show all posts

Tuesday, February 11, 2014

[cert] Vulnerabilities and Attack Vectors

Will Dormann - 10/01/2013
Hi, this is Will Dormann of the CERT Vulnerability Analysis team. One of the responsibilities of a vulnerability analyst is to investigate the attack vectors for potential vulnerabilities. If there isn't an attack vector, then a bug is just a bug, right? In this post, I will describe a few interesting cases that I've been involved with.
Read more »
Posted by at No comments:
Labels: ,

[cert] Differences Between ASLR on Windows and Linux

Will Dormann - 02/10/2014
Hi folks, it's Will again. In my last blog entry, I discussed a behavior of NX on the Linux platform. Given that NX (or DEP as it's known on the Windows platform) and Address Space Layout Randomization (ASLR) work hand-in-hand, it's worth looking into how ASLR works on Linux. As it turns out, the implementation of ASLR on Linux has some significant differences from ASLR on Windows.
Read more »
Posted by at No comments:
Labels: ,
Subscribe to: Posts (Atom)