fuzzing

  1. Linux NBD Kernel Hardening: CVE-2025-40080 Tightens Socket Validation

    The Linux kernel's Network Block Device (NBD) subsystem received a targeted hardening this week to restrict accepted socket types to TCP and UNIX stream sockets, closing a locally‑triggered vector that syzbot and fuzzers were beginning to abuse and preventing a range of unexpected socket types...

  2. Attacking the VM Worker Process

    In the past year we invested a lot of time making Hyper-V research more accessible to everyone. Our first blog post, “First Steps in Hyper-V Research”, describes the tools and setup for debugging the hypervisor and examines the interesting attack surfaces of the virtualization stack components...
    • News
    • Thread
    • attack surface blog debugging fuzzing hyper-v microsoft research security virtualization vm worker
    • Replies: 0
    • Forum: Security Alerts

  3. More about the Office File Validation backport plan

    In November 2010, Microsoft released the first Security Bulletin (Link Removed due to 404 Error) against an Office 2010 component, in this case Microsoft Word. Approximately 6 months had elapsed since Office 2010 launched in May and while it's good for such a widely used product to be available...
    • News
    • Thread
    • document files download enhancement file format file parsing file validation fuzzing microsoft development microsoft word office 2003 office 2007 office 2010 protected view security bulletin security engineering security features software security software update user protection vulnerabilities
    • Replies: 0
    • Forum: Security Alerts

  4. Microsoft Office "Anti-Bulletin"

    In November 2010, Microsoft released the first Security Bulletin (Link Removed due to 404 Error) against an Office 2010 component, in this case Microsoft Word. Approximately 6 months had elapsed since Office 2010 launched in May and while it's good for such a widely used product to be available...
    • News
    • Thread
    • bulletin development document security file parsing file validation fuzzing microsoft microsoft development office 2003 office 2007 office 2010 protected view security software enhancement testing threat mitigation update user safety vulnerabilities word 2010
    • Replies: 0
    • Forum: Security Alerts

  5. Microsoft admits it can’t stop Office file format hacks

    Microsoft’s plan to “sandboxâ€Â￾ Office documents in the next version of its application suite is an admission that the company cannot keep hackers from exploiting file format bugs, a security analyst said on July 23. “What’s been happening is that Office has lots of...
    • reghakr
    • Thread
    • cybersecurity excel file format fuzzing hacking information security malware microsoft office office 2010 patch management powerpoint protected view sandbox security software suite update vulnerabilities word
    • Replies: 1
    • Forum: Windows News