Security Vulnerability Research & Defense

Browse by Tags

Tuesday, August 12, 2008 11:30 AM

MS08-041 : The Microsoft Access Snapshot Viewer ActiveX control

MS08-041 fixes a vulnerability in the Microsoft Access Snapshot Viewer ActiveX control. It’s an interesting vulnerability so we wanted to go into more detail about platforms at reduced risk and also more about the servicing strategy for this vulnerability.

Posted by swiblog | (Comments Off)

Filed under: Attack, classid, clsid, IE, Internet Explorer, Mitigations, phoenix bit, timing attack, killbit, Kill-Bit, Workarounds, activex

Thursday, May 29, 2008 10:20 PM

SQL Injection Attack

(Special thanks to Neil Carpenter for helping out on this blog post) Recent Trends Beginning late last year, a number of websites were defaced to include malicious HTML <script> tags in text that was stored in a SQL database and used to generate

Posted by swiblog | (Comments Off)

Filed under: Attack, SQL Injection

Security Vulnerability Research & Defense

This Blog

Syndication

Search

News

Blogroll

Report a Vulnerability to Microsoft

Tags

Recent Posts

Archives

Browse by Tags

MS08-041 : The Microsoft Access Snapshot Viewer ActiveX control

SQL Injection Attack