Back in May of this year, Symantec released an avisory entitled SYM06-010: Symantec Client Security and Symantec AntiVirus Elevation of Privilege. Those that took the time to read it beyond the title noticed that this isn’t just a local privilege elevation exploit. It’s an out and out remote stack overflow using a specific service (TCP [...]
Last week I came across an eWeek article describing a new laptop locator that promises to help companies avoid costly disclosures in the event a laptop is lost. And, let’s face it, a lot of laptops are lost or stolen, including government and military. This new laptop locator offers an obvious twist on an existing [...]
Kevin Borders, who worked with the ASERT this past summer, is today’s guest blogger. Kevin’s working on some interesting technology being developed at the University of Michigan that we thought you’d enjoy learning more about. As always, we welcome any questions, comments or concerns: We cannot always rely on signatures to detect spyware and other [...]