Alert Logic
877.484.8383
Alert Logic Blog
In this blog, Alert Logic provides commentary on topics that are related to our technologies, such as log management, threat management, and IT compliance management.
Qakbot Infection
We recently received a computer that we believed to be infected with malware. The goal here was to be able to identify if there is any probable infection in the computer or if the computer has been compromised. Once the malicious content was identified our next step was to author …
June 05, 2011 //
Analysis of CVE-2011-1764: A Case of format String Vulnerability in EXIM
CVE-2011-1764 is a case of format string vulnerability in Exim. Format string vulnerabilities arise due to the missing format specifier in a poorly written code. Format string vulnerabilities in an application can lead to denial of service attack, reading attacks, i.e. content of a memory location can be viewed, and …
May 18, 2011 //
The Dangers of Opening Your Mouth
Recently, I attended a security talk on risk management. The theme of the topic was about how “Security Awareness” was ineffective and that we should, in fact, be teaching “Security Training”. During the talk, I found myself growing more and more upset with the theme of the talk. I felt …
May 05, 2011 //
Analysis of MS11-019 CVE-2011-0654 -Browser Election Vulnerability
CVE-2011-0654, was a 0 day unauthenticated remote codeexecution vulnerability that exists in the way that the Common Internet File System(CIFS) Browser Protocol implementation parses malformed browser messages. An attempt to exploit the vulnerability would not require authentication. An attacker who successfully exploited this vulnerability could execute arbitrary code and take …
April 26, 2011 //
Quick Analysis of CVE-2011-0609 Adobe Flash Player
Adobe recently reported the existence of a new zero day flaw in flash player affecting flash player 10.2.152.33. and prior. The vulnerable binary is authplay.dll which ships with Adobe Reader. The attack makes use of a SWF file embedded inside an Excel file, which is delivered as an email attachment. …
April 22, 2011 //
