MS-SQL Quickie update
Hey folks, Since MS chose today to speak on this issue (see http://www.microsoft.com/technet/security/advisory/961040.mspx) We wanted to remind you that we released coverage for this rule on the 9th of December. The following SIDs address this issue: 15127, 15128, 15129, 15130
Fun with SSDT Hooks and DEP
My favorite part of work here at the VRT is how much you can learn from a project that, in the end, doesn’t achieve what you set out to do. This past week, I was looking at the possibility of watching, in the Windows kernel, for attempts to bypass DEP protection. Briefly, DEP is
Update on Snort and ClamAV for ms08-067
There's been a lot of action on the MS08-067 front over the weekend, so we thought we'd bring you up to date on the bug in general, and how Snort and ClamAV are providing specific detection. Interestingly, things are rolling out about the way we expected them to. We happe
Webcast Teaser -- Basic Buffer Overflow Detection
Our next webcast, Performance Rules Creation: Rules Options and Techniques, is scheduled for 1pm EST on Wednesday, September 17th. We’ll be using actual published VRT rules to demonstrate common rule structures, rule options and some of the gotchas that you might run across when