Software Engineering Institute
By David Keaton on August 25, 2014 7:52 PM| No Comments
According to a 2013 report examining 25 years of vulnerabilities (from 1998 to 2012), buffer overflow causes 14 percent of software security vulnerabilities and 35 percent of critical vulnerabilities, making it the leading cause of software security vulnerabilities overall. As...
By David Keaton on November 5, 2012 4:47 PM| No Comments
By analyzing vulnerability reports for the C, C++, Perl, and Java programming languages, the CERT Secure Coding Team observed that a relatively small number of programming errors leads to most vulnerabilities. Our research focuses on identifying insecure coding practices and...
By David Keaton on June 18, 2012 4:23 PM| No Comments
Buffer overflows--an all too common problem that occurs when a program tries to store more data in a buffer, or temporary storage area, than it was intended to hold--can cause security vulnerabilities. In fact, buffer overflows led to the creation...
Visit the SEI Digital Library for other publications by David
Toll Free: 888-201-4479
4500 Fifth Avenue
Pittsburgh, PA 15213-2612