Information systems must manage the memory resources used by both the operating system and applications. When a single system supports many different uses, it becomes critical to isolate the memory used by each process to prevent it from being read or altered in an unauthorized way. In this video, Mike Chapple looks at the impact of security issues associated with memory, including memory leaks, pointer dereferencing, DLL injections, and resource exhaustion.
- Information systems must manage the memory resources used…by both the operating system and applications.…When a single system supports many different uses,…it becomes critical to isolate the memory used by each…process to prevent it from being read or altered in an…unauthorized way.…I covered the issues associated with memory overflows…earlier in this course.…You learned how attackers can exploit overflow…vulnerabilities to overwrite the contents of memory…belonging to other processes and possibly trick the…system into executing attacker provided code using…administrative privileges.…
One of the other issues that we need to watch for with…memory or any other limited resource on a system is…resource exhaustion.…Whether intentional or accidental, systems may consume…all of the memory, storage, processing time or other…resources available to them rendering the system disabled…or crippled for other use.…Memory leaks are one example of resource exhaustion.…If an application requests memory from the operating system,…
- Comparing viruses, worms, and Trojans
- Backdoors and logic bombs
- Understanding the attacker
- Attack types: from denial of service to brute force attacks
- Preventing insider threats
- Wireless attacks
- Understanding cross-site scripting
- Preventing SQL injection
- Social engineering
- Scanning for vulnerabilities
- Penetration testing
- Assessing the impact of vulnerabilities
Skill Level Beginner
IT Security Foundations: Core Conceptswith Lisa Bock1h 13m Beginner
Insights from a Cybersecurity Professionalwith Mike Chapple32m 15s Appropriate for all
2. Understanding Attackers
3. Understanding Attack Types
4. Wireless Attacks
5. Application Attacks
6. Social Engineering Attacks
7. Vulnerability Scanning and Penetration Testing
8. Impact of Vulnerabilities
- Mark as unwatched
- Mark all as unwatched
Are you sure you want to mark all the videos in this course as unwatched?
Take notes with your new membership!
Type in the entry box, then click Enter to save your note.
1:30Press on any video thumbnail to jump immediately to the timecode shown.