Security Incidents mailing list archives

Previous By Date Next
Previous By Thread Next

Adminstrivia: SF article announcement: Blind Buffer Overflows In ISAPI Extensions

From: Daniel Hanson <dhanson () securityfocus com>
Date: Tue, 25 Jan 2005 11:25:48 -0700 (MST)

The following Infocus article was published on Symantec's SecurityFocus
today:

Blind Buffer Overflows In ISAPI Extensions
By Isaac Dawson  January 25, 2005

This paper will outline the risks ISAPI Extensions pose and how they can
be exploited by third parties without any binary exposure or knowledge
using blind stack overflows. This method can enable remote code
execution in proprietary and third party applications.

http://www.securityfocus.com/infocus/1819
Previous By Date Next
Previous By Thread Next

Current thread: