Archive for 2007

Risks and Realities: Top 20, Bzub and family, RTSP, and Seeing the Future

December 3, 2007 by Jose Nazario

A few things in my reading hopper today … I digest a lot of info every day, but here’s a few highlights from my reading. SANS has published their Top 20 risks for 2007, the annual update to the big list SANS puts together every year. This year’s is pretty good, actually. Rohit Dhamankar, from [...]


Posted in Arbor Networks - DDoS Experts, Exploit Code, Malware, Vulnerabilities
Read More

QuickTime RTSP Overflow: This Has Happened Before …

November 29, 2007 by Jose Nazario

… and will happen again, to paraphrase BSG: Razor. A few days ago we started seeing reports of a new 0-day vulnerability in QuickTime 7.3. RTSP “Content-type” header overflow. It’s been about a week and there’s still no CVE ID attached to it. We have countless exploits out against it now. No patch in sight. [...]


Posted in Exploit Code, Vulnerabilities
Read More

Security Bites Podcast: Storm, the ‘Energizer’ botnet

November 8, 2007 by Arbor Networks

CNET’s Robert Vamosi interviews Jose Nazario of Arbor Networks about the continuing problems posed by active botnets.

Security Bites Podcast: Storm, the 'Energizer' botnet [ 8:05 ] Play Now | Play in Popup | Download (875)


Posted in Podcasts
Read More
« Previous Entries
Next Entries »