Warning: Creating default object from empty value in /home/ict-forward/www-apps/wp-svn/wp-includes/ms-load.php on line 138
September « 2009 « The FORWARD project blog

Archive for September, 2009

Integer bugs

Tuesday, September 29th, 2009

It is claimed that integer overflow bugs recently became the second most common bug type in security advisories :
http://cve.mitre.org/docs/vuln-trends/index.html

The severity of integer bugs, lie on the fact that they can lead in buffer overflows. Some more recent incidents are mentioned below:
Many well-known applications, such as QuickTime – [ZDNet] -
OpenOffice – [ZDNet] -
and Windows Media Player – [The Register] -
have recently presented integer bugs.

A malicious user can trigger integer overflows even in voting machines that are used in California:
[WIRED]