Electronic Design

Common Embedded Vulnerabilities, Part 1: Code Injection

Because many embedded systems have not historically been connected to networks, or since it was reasonable to expect that the devices would operate in a trusted environment, there’s been relatively ...
ITWire

MoAB spots another format string vulnerability

Mac OS X's Installer utility has a format string bug that can be triggered by maliciously crafted package file names, according to the Month of Apple Bugs project. "Under certain circumstances this ...
CSOonline

Medical device vulnerability could let hackers steal Wi-Fi credentials

The security firm also warned of additional vulnerabilities, including a telnet issue involving the “hostmessage” command which could be exploited to view data from the connected device’s process ...
PC World

Vulnerability in widely used ‘strings’ utility could spell trouble for malware analysts

One of the first things a malware analyst does when encountering a suspicious executable file is to extract the text strings found inside it, because they can provide immediate clues about its purpose ...