InfoWorld

Buffer overflows and the difficulty of flawless code-writing

Last week I summarized the difficulties in preventing buffer overflows in complex software and introduced fuzzers. With multiple buffer overflows announced every week on some of the world’s most ...
CNET

Buffer overflows: Reasons to apply mundane-sounding software fixes

Many times when updates or security patches appear for the OS or applications, a common reason for the update is that an attacker can make the program execute arbitrary code, usually by tricking a ...
Wired

Conficker: How a Buffer Overflow Works

Like so much malware before it, the dreaded Conficker worm spreads primarily through a type of software bug called a “buffer overflow” — a class of vulnerability first mass-exploited by the Morris ...
Nextgov

Researchers disclose widespread bootloader vulnerability

New research from Eclypsium details a simple buffer overflow bug that could impact billions of devices using Linux and Windows operating systems. Researchers say they have found a new buffer flow ...
Ars Technica

New Spectre-like attack uses speculative execution to overflow buffers

When the Spectre and Meltdown attacks were disclosed earlier this year, the expectation was that these attacks would be the first of many, as researchers took a closer look at the way that the ...