About the White Paper:
Exploits, vulnerabilities and buffer-overflow techniques have been used by malicious hackers and virus writers for a long time. However, until recently, these techniques were not common place in computer viruses. The CodeRed worm was a major shock to the antivirus industry since it was the first worm that spread not as a file, but solely in memory by utilizing a buffer overflow in Microsoft IIS. Many antivirus companies were unable to provide protection against CodeRed, while other companies with a wider focus on security were able to provide solutions to the relief of end users.
In this paper, the authors will cover such techniques as buffer overflows and input validation exploits, plus how computer viruses are using them to their advantage. The authors will also discuss tools, techniques and methods to prevent these blended threats. |
