Will FusionVM perform buffer overflows/denial of service attacks against my network application?
ANY test that can cause significant/fatal damage to a system or application is not run. Some buffer overflow and “dos” vulnerabilities can be safely tested for without causing harm to your server/service. Quality assurance measures on the tool creation process insure tests are safe before they are put into “general release” in the system. Even so, it is impossible to test for 100% of all configuration possibilities and its difficult to completely rule out any disruptions. The above can illustrated by some examples. Example 1: dos Vulnerability in Web Server X: “By making repeated requests for http://web/badfile.htm it is possible to cause a web server to consume 100% of all processor speed, effectively creating a dos condition”. In this case, checking for the existence of the file or making a single request would not create a dos scenario, however repeating 100,000 times would.” Example 2: Buffer Overflow in Web Server X: “By sending a large packet it is possible to overflow a buffer a