Dark Reading

Hot New OS Flaw: Integer Overflow

This may come as a surprise: Integer overflow is now one of the biggest vulnerabilities reported in vendor operating systems. Buffer overflow maintains its top ranking as the most exploited security ...
eWeek

How to Defend Against Deadly Integer Overflow Attacks

eSpeaks’ Corey Noles talks with Rob Israch, President of Tipalti, about what it means to lead with Global-First Finance and how companies can build scalable, compliant operations in an increasingly ...
Threat Post

Multiple Vulnerabilities in LibXL Library Open Door to RCE Attacks

Hackers using a specially crafted XLS files can trigger several remote code execution vulnerabilities in the LibXL library. Researchers have identified seven vulnerabilities in the LibXL C library, ...
The Next Web

Ethereum bug causes integer overflow in numerous ERC20 smart contracts [Update]

Blockchain security startup PeckShield has come across a critical vulnerability in multiple Ethereum smart contracts (based on the ERC20 protocol) which results in integer overflow – a common issue ...
GIGAZINE

Pointed out that there is a flaw in the ``CVE'' system that assigns IDs to vulnerabilities ...

When a vulnerability that becomes an information security flaw is discovered, it is given an identification ID called CVE (Common Vulnerabilities and Exposures), evaluated for severity, and listed.
Threat Post

Critical Flaws in VNC Threaten Industrial Environments

Some of the bugs allow remote code-execution. The open-source Virtual Network Computing (VNC) project, often found in industrial environments, is plagued with 37 different memory-corruption ...