The BSD libc library was updated recently to address a buffer overflow vulnerability that could have allowed an attacker to execute arbitrary code.

Here’s how a buffer overflow attack happens: A cracker acquires a popular piece of Internet-related software, such as a Web server or an instant messaging client, and analyzes the code. It’s ...

This raises the bar on potential buffer overflows and other attacks: as a result, an attacker is unable to write code anywhere in memory where it can be executed.

ASLR increases the control-flow integrity of a system by making it more difficult for an attacker to execute a successful buffer-overflow attack by randomizing the offsets it uses in memory layouts.

Security issues go beyond buffer overflows. How standards help with commonly exploited weaknesses. Improving code quality and safety with code-analysis tools. On the other hand, as Code Red caused ...

AOL Time Warner warns people to update outdated ICQ software versions or risk becoming a casualty of a potentially damaging buffer overflow attack.

The zero-day exploit is technically a heap buffer overflow in VP8 encoding in libvpx, which is a video code library developed by Google and the Alliance for Open Media.