CISSP Review Notes – Notes I used to pass the exam
November 18, 2009 · Posted in Don's eBook Report, InfoSec Docs, Information Security, eBooks, etc... · Comment
I became a Certified Information Systems Security Professional in 2007. I studied for nearly a year. It took so long because I had to self-study and I followed the best process I know (in essence what works for me). I was tempted on getting some of them brain dumps, but I thought better. I also debated whether I should attend one of them bootcamps. But I don’t think these bootcamps are worth what they are charging, typically $2500.00 for one week.
So I decided to go Spartan and go old school. I read the Shon Harris book and the official CISSP book for at least 2 hours every morning with the target of finishing a Domain per week. All the while highlighting stuff that I thought would be useful and worth highlighting. So you can imagine that process took me at least 20 weeks, reading two books. Read more
Join Me On Facebook
Business Tech Press Releases- How to Get Bloggers to help in Your Press Release Distribution May 20, 2012
- Companies Cash In With Their Unwanted Computers, Electronics & Inventory May 20, 2012
- Sea Launch Prepares for the Launch of Intelsat-19 May 20, 2012
- Irosoft anuncia la exitosa implementación de sus soluciones LIMS en Barbados May 19, 2012
- El nuevo Barneys.com es más que comprar, es comprar con una historia May 19, 2012
- From the National Vulnerability Database
- CVE-2012-1090 (linux_kernel) May 16, 2012The cifs_lookup function in fs/cifs/dir.c in the Linux kernel before 3.2.10 allows local users to cause a denial of service (OOPS) via attempted access to a special file, as demonstrated by a FIFO. […]nvd@nist.gov
- CVE-2012-2123 (linux_kernel) May 16, 2012The cap_bprm_set_creds function in security/commoncap.c in the Linux kernel before 3.3.3 does not properly handle the use of file system capabilities (aka fcaps) for implementing a privileged executable file, which allows local users to bypass intended personality restrictions via a crafted application, as demonstrated by an attack that uses a parent process […]nvd@nist.gov
- CVE-2012-0044 (linux_kernel) May 16, 2012Integer overflow in the drm_mode_dirtyfb_ioctl function in drivers/gpu/drm/drm_crtc.c in the Direct Rendering Manager (DRM) subsystem in the Linux kernel before 3.1.5 allows local users to gain privileges or cause a denial of service (memory corruption) via a crafted ioctl call. […]nvd@nist.gov
- CVE-2012-2121 (linux_kernel) May 16, 2012The KVM implementation in the Linux kernel before 3.3.4 does not properly manage the relationships between memory slots and the iommu, which allows guest OS users to cause a denial of service (host OS crash) by leveraging administrative access to the guest OS to conduct hotunplug and hotplug operations on devices. […]nvd@nist.gov
- CVE-2012-0207 (linux_kernel) May 16, 2012The igmp_heard_query function in net/ipv4/igmp.c in the Linux kernel before 3.2.1 allows remote attackers to cause a denial of service (divide-by-zero error and panic) via IGMP packets. […]nvd@nist.gov
- CVE-2012-1601 (linux_kernel) May 16, 2012The KVM implementation in the Linux kernel before 3.3.6 allows host OS users to cause a denial of service (NULL pointer dereference and host OS crash) by making a KVM_CREATE_IRQCHIP ioctl call after a virtual CPU already exists. […]nvd@nist.gov
- CVE-2011-4621 (linux_kernel) May 16, 2012The Linux kernel before 2.6.37 does not properly implement a certain clock-update optimization, which allows local users to cause a denial of service (system hang) via an application that executes code in a loop. […]nvd@nist.gov
- CVE-2012-1179 (linux_kernel) May 16, 2012The Linux kernel before 3.3.1, when KVM is used, allows guest OS users to cause a denial of service (host OS crash) by leveraging administrative access to the guest OS, related to the pmd_none_or_clear_bad function and page faults for huge pages. […]nvd@nist.gov
- CVE-2012-0879 (linux_kernel) May 16, 2012The I/O implementation for block devices in the Linux kernel before 2.6.33 does not properly handle the CLONE_IO feature, which allows local users to cause a denial of service (I/O instability) by starting multiple processes that share an I/O context. […]nvd@nist.gov
- CVE-2012-1146 (linux_kernel) May 16, 2012The mem_cgroup_usage_unregister_event function in mm/memcontrol.c in the Linux kernel before 3.2.10 does not properly handle multiple events that are attached to the same eventfd, which allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact by registering memory threshold events. […]nvd@nist.gov
- CVE-2012-1090 (linux_kernel) May 16, 2012