|
A day in the life of the JPEG Vulnerability
|
|
Hits: 0 |
|
Date added: 08/05/2005 |
|
This paper will provide a detailed analysis of the Buffer Overrun in JPEG Processing which started appearing on Microsoft software in September 2004.
Just a week prior to writing this paper, Microsoft announced a buffer overrun in JPEG processing in many of Microsoft’s software. This particular vulnerability increased the difficulty of patching for large organizations since it not only impacted operating systems, it also included many popular software packages such as Microsoft Office and development software such as Visual Studio .Net.
This paper will include an analysis of the timeline between the vendor announcement of this vulnerability, to actual exploit code or proof of concept, to an actual attack. An analysis of an attack as well as steps one could use to mitigate the risk of this vulnerability will also be completed. Finally, policies and processes that all organizations is included for reference.
I chose this particular vulnerability because of several reasons. The first was to understand the timeline users face when determining how long they have before they should patch. Often times, large organizations need to test patches against several different desktop builds, and that could take a couple days each. A second reason was to develop an understanding of this new type of attack. This particular attack focuses on user interaction, or even social engineering. Finally, there was little information available at the time this paper was being written. Therefore, it is my contribution to the community as an analysis of the new threat. |
|
|
|
|
|
|
Web Application Footprints and Discovery
|
|
Hits: 0 |
|
Date added: 08/05/2005 |
|
Web application assessment begins with IP address and ports (80/443) - this is very common practice. But there is flaw in this method. What if a web server is running with multiple virtual hosts? In other words, one server is running more than one web application.
In such a scenario, a web application assessment done on such IP/Port combinations may fail and produces partial results. Doing a reverse DNS on the IP and using it as HOST field in HTTP is an option, but may also fail most of the time.
So, where does the solution to this problem lie? The solution lies in the WHOIS information database and DNS server.
This paper describes how to fetch this information and follow up with the discovery process for web applications. |
|
|
|
|
|
Port-Service List-Aug 5 2005
|
|
Hits: 0 |
|
Date added: 08/08/2005 |
|
|
|
|
|
|
|
|
Application Security--Attackers Wont Stop at th...
|
|
Hits: 0 |
|
Date added: 08/05/2005 |
|
Application Security: Attackers Won’t Stop at the Firewall (Why should you?)
Kenneth Newman’s presentation highlights what Application Security is about, what are bad applications and what makes them insecure. The presentation focuses on Application Security Framework, Application Security Integration Application Security Awareness. |
|
|
|
|
|
|
The Rise of the Spammers
|
|
Hits: 0 |
|
Date added: 08/05/2005 |
|
The author writes: “I’m not going to talk about the motives of this spam community to send millions of dumb e-mails telling how to get a good mortgage rate, increase my body length or make business with an African prince. This is the story of how one of my home servers was compromised and used as a massive spamming sender within an environment that I’ve never seen (but was likely to happen).” |
|
|
|
