"Buffer Overflow Attacks: Detect, Exploit, Prevent" Released by Syngress

"Buffer Overflow Attacks: Detect, Exploit, Prevent" Shows How to Keep the
Code You Write Today from Headlining Tomorrow's BugTraq Mail List

Contact: Amy Pedersen
781-681-5151 x12
amy@syngress.com

Rockland, MA January 26, 2005 -- Syngress Publishing, Inc., today
announced the publication of "Buffer Overflow Attacks: Detect, Exploit,
Prevent" (ISBN: 1-932266-67-4). Forensic investigations of notorious
Internet attacks, such as the SQL Slammer and Blaster Worms, reveal buffer
overflows to be the sophisticated hacker's vulnerability of choice. These
worms crippled the Internet and cost billions of dollars to clean up. Now
even more powerful and insidious threats have appeared in the form of
custom exploits. These one-time-only exploits are custom crafted to attack
your enterprise, making them even more difficult to detect and defend. No
catchy names, no media coverage; just your own personal disaster.

James C. Foster's "Buffer Overflow Attacks" clearly demonstrates that the
only way to defend against the endless variety of buffer overflow attacks
is to implement a comprehensive design, coding and test plan for all of
your applications. From Dave Aitel's foreword through the last appendix,
this is the only book dedicated exclusively to detecting, exploiting, and
preventing buffer overflow attacks.

Chapter topics include: Buffer Overflows: The Essentials; Understanding
Shellcode; Writing Shellcode; Win32 Assembly; Case Study: FreeBSD NN
Exploit Code; Case Study: xlockmore User Supplied Format String
Vulnerability (CVE-2000-0763); Case Study: FrontPage Denial of Service
Utilizing WinSock; Stack Overflows; Heap Corruption; Format String
Attacks; Windows Buffer Overflows; Case Study: cURL Buffer Overflow on
Linux; Case Study: OpenSSL SSLv2 Malformed Client Key Remote Buffer
Overflow Vulnerability (CAN-2002-0656); Case Study: X11R6 4.2 XLOCALEDIR
Overflow; Case Study: Microsoft MDAC Denial of Service; Case Study: Local
UUX Buffer Overflow on HPUX; Finding Buffer Overflows in Source; Case
Study: InlineEgg I; Case Study: InlineEgg II; Case Study: Seti@Home
Exploit Code; Case Study: Microsoft CodeBlue Exploit Code; The Complete
Data Conversion Table; Useful Syscalls; Additional Exploit References

BOOK DETAILS
ISBN: 1-932266-67-4
PRICE: $34.95 U.S.
PAGE COUNT: 448 PP

Inside the book coverage:
-Includes Numbered-by-Line Exploit Code Examples That Illustrate the
 Differences Between Stack Overflows, Heap Corruption, and Format String
 Bugs
-Provides Case Studies for Most Major Platforms and Environments,
 Including Windows, FreeBSD, FrontPage, and Linux
-Avoid Worm or Custom Exploits by Analyzing Your Source Code to Detect
 Buffer Overflow Vulnerabilities

About the Author
James C. Foster, Fellow, is the Deputy Director of Global Security
Solution Development for Computer Sciences Corporation where he is
responsible for the vision and development of physical, personnel, and
data security solutions. Prior to CSC, Foster was the Director of Research
and Development for Foundstone Inc. (acquired by McAfee) and was
responsible for all aspects of product, consulting, and corporate R&D
initiatives. Prior to joining Foundstone, Foster was an Executive Advisor
and Research Scientist with Guardent Inc. (acquired by VeriSign) and an
adjunct author at Information Security Magazine (acquired by TechTarget),
subsequent to working as Security Research Specialist for the Department
of Defense.

With his core competencies in high-tech remote management, international
expansion, application security, protocol analysis, and search algorithm
technology, Foster has conducted numerous code reviews for commercial OS
components, Win32 application assessments, and reviews on commercial-grade
cryptography implementations. Foster is a seasoned speaker and has
presented throughout North America at conferences, technology forums,
security summits, and research symposiums with highlights at the Microsoft
Security Summit, Black Hat USA, Black Hat Windows, MIT Wireless Research
Forum, SANS, MilCon, TechGov, InfoSec World 2001, and the Thomson Security
Conference. He also is commonly asked to comment on pertinent security
issues and has been cited in USA Today, Information Security Magazine,
Baseline, Computer World, Secure Computing, and the MIT Technologist.
Foster holds an A.S., B.S., MBA and numerous technology and management
certifications and has attended or conducted research at the Yale School
of Business, Harvard University, the University of Maryland, and is
currently a Fellow at University of Pennsylvania's Wharton School of
Business.

Foster has authored, contributed, or edited for major publications
including "Snort 2.1 Intrusion Detection" (Syngress Publishing, ISBN:
1-931836-04-3), "Hacking Exposed, Fourth Edition," "Anti-Hacker Toolkit,
Second Edition," "Advanced Intrusion Detection," "Hacking the Code:
ASP.NET Web Application Security" (Syngress, ISBN: 1-932266-65-8),
"Anti-Spam Toolkit," and "Google Hacking for Penetration Testers"
(Syngress, ISBN: 1-931836-36-1).

Background Information
Syngress Publishing (www.syngress.com), headquartered in Rockland,
Massachusetts, is an independent publisher of print and electronic
reference materials for Information Technology professionals seeking skill
enhancement and career advancement. Distributed throughout Europe, Asia,
and the U.S. and Canada, Syngress titles have been translated into twenty
languages. The company's pioneering customer support program,
solutions@syngress.com, extends the value of every Syngress title with
regular information updates and customer-driven author forums. For more
information on Syngress products, contact Amy Pedersen at 781-681-5151 or
email amy@syngress.com. Syngress books are distributed in the United
States and Canada by O'Reilly Media, Inc.