Resources
Topics of Interest
- Anti-Malware Testing
- Application Load Testing
- Call Center Testing
- Cloud Testing
- Cyber Range Deployment
- Cyber Security
- Data Center Consolidation
- Data Loss Prevention
- DDoS Testing
- DPI Testing
- Firewall Testing
- IPS Testing
- IPv6 Testing
- Lawful Intercept
- Load Balancer Testing
- Low Latency Networks
- Mobile Network Security
- Mobility Testing
- Network Security Testing
- Server Load Testing
Ixia Connect
- May 24, 2013
- NVOS v3.8 Expands Ixia Network Visibility Feature Set
Last week, Ixia launched the latest release of the Anue Net Tool optimizer ® (NTO). underscores Ixia’s commitment to our customers by enhancing three core areas.
- May 24, 2013
- CVE-2011-0962 (Cisco Common Services Devices Center Cross Site Scripting)
CVE-2011-0962 is a cross-site scripting vulnerability in Cisco Unified Operations Manager Common Services Framework, part of Cisco Unified Operations Manager, a monitoring system for the Cisco Unified Communications system. In this attack, an HTTP request with a specially-crafted URL is sent to the target server, usually due to the victim clicking a malicious link. The server fails to correctly sanitize certain fields in the URL for Javascript code and uses the values of those fields when constructing a response. The returned page contains the malicious script, which is then run on the client machine.
- May 24, 2013
- ATI Update 3.0.123289 now Available on Strike Center
Ixia is pleased to announce the latest update (3.0.123289) for Ixia BreakingPoint’s ATI at its Strike Center hub.
- May 21, 2013
- Can Your Network Withstand The Zombie Attack?
According to Internet World Stats, the worldwide Internet population is close to 2 billion users. Many users browse the Internet without appropriate security software, or by using operating systems and software that are not properly updated. Attackers use automated techniques to discover such systems and exploit known vulnerabilities to install DDoS tools on those systems. Such infected computers are called zombie computers. Through automation, attackers exploit a large number of vulnerable computers, infecting them with malware code that gives attackers control of those systems.
- May 17, 2013
- Use-After-Free ActiveX Vulnerability in Microsoft Remote Desktop Client (CVE-2013-1296)
One of my favorite pastimes here at Ixia BreakingPoint is exploring the limits of a vulnerability. We get vulnerability information from a variety of sources, and one of the things the ATI Security Team takes great pride in is our ability to fully test the capabilities of a detection device (such as a firewall or intrusion protection system). This means creating strikes that fully mimic all the possible ways an exploit can take advantage of a vulnerability, in all its possible incarnations. This can mean different file transfer methods, obfuscation and evasion methods, as well as non-obvious exploitation methods.
