Applications Management Engineer Sr (NYC) Next Step Systems US-NY-New York Post A Job | Post A Resume

[ Thanks to David A. Wheeler for this link. ]

"In November 1988, many organizations had to cut themselves off from the Internet because of the 'Morris worm,' which was a program written by 23-year-old Robert Tappan Morris to attack VAX and Sun machines. By some estimates, this program took down 10% of the entire Internet. In July 2001, another worm named 'Code Red' eventually exploited over 300,000 computers worldwide running Microsoft's IIS Web Server. In January 2003, the 'Slammer' (also known as 'Sapphire') worm exploited a vulnerability in Microsoft SQL Server 2000 software, disabling parts of the Internet in South Korea and Japan, disrupting Finnish phone service, and slowing many U.S. airline reservation systems, credit card networks, and automatic teller machines. All of these attacks--and many others--exploited a vulnerability called a buffer overflow.

"An informal 1999 survey on Bugtraq (a mailing list discussing security vulnerabilities) found that two-thirds of the participants believed that the #1 cause of vulnerabilities was buffer overflows. From 1997 through March 2002, half of all security alerts from the CERT/CC were based on buffer overflow vulnerabilities.

"If you want your programs to be secure, you need to know about buffer overflows and how to prevent them, the latest automated tools to counter them (and why they aren't enough), and how to counter them in your programs..."

Complete Story

Related Stories:
Linux Journal: Buffer Overflow Attacks and Their Countermeasures(Mar 12, 2003)
ZDNET: Blame it on Buffer Overflows(Aug 09, 2001)
Technocrat.net: Are buffer-overflow security exploits really Intel and OS makers fault?(Jul 29, 2000)

Index Mode   |   Flat Mode   |   Thread Mode   |   Thread Flat     Talkback(s) Name  and Date   The C Programming Language    Matthew C. Tedder Feb 6, 2004, 07:40:39     Re: The C Programming Language    steggy Feb 6, 2004, 14:09:51     OO not _that_ difficult    Passacaglia Feb 6, 2004, 15:42:09     Re: Re: The C Programming Language    Howard B. Golden Feb 6, 2004, 16:05:46     Re: Re: The C Programming Language    Tony OBryan Feb 6, 2004, 16:22:05     I C your lazy    codez Feb 6, 2004, 17:30:38     Lets take a step back    phil Feb 6, 2004, 19:17:15     Re: OO not _that_ difficult    Ben Feb 6, 2004, 20:20:53     Re: Lets take a step back    bob Feb 6, 2004, 22:05:24     RE:RE: The C programming language    Gary Stewart Feb 6, 2004, 23:21:47     Re: Re: Re: The C Programming Language    Rainer Weikusat Feb 7, 2004, 12:23:10     Re: Lets take a step back    Raner Weikusat Feb 7, 2004, 12:48:40     Re: RE:RE: The C programming language    Ken Jennings Feb 8, 2004, 00:24:05     Re: Re: Re: The C Programming Language    steggy Feb 8, 2004, 15:08:22     Re: Re: Re: Re: The C Programming Language    Kenneth Jennings Feb 9, 2004, 01:11:07     Re: I C your lazy    Kenneth Jennings Feb 9, 2004, 01:20:22     Home | Search Talkbacks | Customize View    Top of Page   Enter your comments below: * Your Name: * Your Email Address: * Subject: CC: [will also send this talkback to an E-Mail address] * Comments: Tags allowed:<I>,<B> and <U>. See our talkback-policy for more about talkback content. Fields marked with * are required!