SEARCH RESULTS
 
Showing 1-10 of 16 records
 
Expand article

Systems programmers help people

2007-02-13 13:49:52 by Liudvikas Bukys in Liudvikas Bukys
 
...assembly language (paying for access at UR to an APL terminal, and editing object decks on the keypunch to save money while debugging assembly language programs My dinnermate at the banquet had had no such experience. So in choosing her major and concentration, she had to depend on the laymans descriptions she heard during a college visit....
 
Tags: application programs, programs, system programmers, system, assembly language programs, people, major, computer science major, ibm360 assembly language
 
 
 
 
Expand article

The STRIDE per Element Chart

2007-10-29 23:06:46 by sdl in The Security Development Lifecycle
 
...assembly, or an a.out executable running on Unix v7. Each of those will be vulnerable to different instantiations of threats. Your exe or a.out will be vulnerable to simple stack smashing overflows, but the .NET assembly wont be. As you make your elements more specific, you can provide more prescriptive guidance as to what threats to look...
 
Tags: element chart, chart, stride, specific, specific threats, cve data, data, stride chart, threats
 
 
 
 
Expand article

Recent Symantec and IBM vulnerabilities, giblets, banned APIs and the SDL

2008-01-04 23:37:00 by sdl in The Security Development Lifecycle
 
...assembly-level analysis, which I used to determine the offending code, and sample exploit code. .WPD File Parser Vulnerability The WPD bug is due to an integer overflow it is possible to cause more than 2400 bytes to be copied from the WordPerfect file into the stack buffer. This overwrites the saved EIP and SEH, and can be exploited for...
 
Tags: linker sdl requirements, sdl requirements, ibm, sdl, requirements, symantec, bugs affect ibm, bugs, sdl refers
 
 
 
 
Expand article

Fuzz Testing at Microsoft and the Triage Process

2007-09-20 18:52:00 by sdl in The Security Development Lifecycle
 
...assembly instruction (on an Intel processor) where the count register (ecx) is large The access violation happens on a mov instruction where the result is used as the destination of a call in the instructions immediately after the mov The access violation happens on a mov instruction where the result is later used in a rep instruction as the...
 
Tags: chance exceptions, exceptions, exception handler, exception, divide-by-zero exception, exception code, triage process, process, first-chance exceptions
 
 
 
 
Expand article

Enabling hierarchical nant builds

2008-03-07 05:49:00 by Keith Brown in Security Briefs
 
...assembly so nant recognizes it Enjoy Here is FindMarkedDirTask.cs using System; using System.Collections.Generic; using System.Text; using NAnt.Core; using NAnt.Core.Attributes; using System.IO; namespace PluralsightNantTasks { [TaskName("findmarkeddir")] public class FindMarkedDirTask : Task { [TaskAttribute("markerfile", Required = true)]...
 
Tags: nant, root script defines, script, root, task, simple nant task, root nant project, return path, return
 
 
 
 
Expand article

Desk Checking

2008-04-03 13:28:52 by Liudvikas Bukys in Liudvikas Bukys
 
...assembly language programming, but debugging was expensive - each assemble/link/run cost over $2. So I started editing the binary object decks on a keypunch instead, reducing the cost of a link/run to something under 80 cents While I followed the technology curve and have all the modern development environment power tools, theres nothing like...
 
Tags: code, fix code, desk, code faster, experiences, lost, parallel experiences, lost art, desk check
 
 
 
 
Expand article

Crimeware in the Middle - Zeus

The Article has images
2008-04-24 04:37:46 by HASH0x8ae4648 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...assembly There has its own process, through this can not be detected in the process list Workaround most firewall (including the popular Outpost Firewall versions 3, 4, but suschetvuet temporary small problem with antishpionom). Not a guarantee unimpeded reception incoming connections Difficult to d etect finder / analysis, bot sets the...
 
Tags: zeus, file, remote file, zeus trojan, binary file, file system32 drivers, kit, metaphisher kit, configuration file
 
 
 
 
Expand article

Responsible-ish Disclosure

2008-05-08 20:50:57 by Chris Eng in Zero in a bit
 
...assembly instructions makes this disclosure irresponsible. But look at the code its completely generic, just a textbook example of what it looks like when you forget to check a return value after calling operator new. Sure, Core gives you the exact offsets into the executable, but so what? If I have the binary, then its not going to be too...
 
Tags: text, esi, 00405c1b mov esi, ecx, 00405c31 push esi, 00405c3e mov ecx, recent dos vulnerability, vulnerability, 00405c21 test esi
 
 
 
 
Expand article

Eye-Fi Adds Geotagging, Splits Up Product Line

The Article has images
2008-05-09 14:07:15 by Glennf in Wi-Fi Networking News
...assembly seamlessly for you Now there's just one thing to worry about. Think about this: McDonald's are everywhere, and nearly all of the U.S. locations have Wi-Fi. The Eye-Fi uploads whenever it can, as long as the camera is turned on. You're geotagging images without any effort. Okay, got it? So...you call in sick to work, and run off to...
 
Tags: eye-fi, wi-fi, simple wi-fi, wi-fi networks, eye-fi ties, eye-fi home, eye-fi handles, wi-fi environment, eye-fi explore
 
 
 
 
Expand article

Enabling hierarchical nant builds

2008-03-07 12:49:00 by keith-brown in Security Briefs
 
...assembly so nant recognizes it Enjoy Here is FindMarkedDirTask.cs using System; using System.Collections.Generic; using System.Text; using NAnt.Core; using NAnt.Core.Attributes; using System.IO; namespace PluralsightNantTasks { [TaskName("findmarkeddir")] public class FindMarkedDirTask : Task { [TaskAttribute("markerfile", Required = true)]...
 
Tags: nant, root script defines, script, root, task, simple nant task, root nant project, return path, return