[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Buffer overflow prevention

To: bugtraq@securityfocus.com
Subject: Re: Buffer overflow prevention
From: Miod Vallat <miod@online.fr>
Date: Thu, 14 Aug 2003 20:24:40 +0000

>   ProPolice is not magical, though. There are plenty of cases where it is
> totally inefficient. To illustrate a very common one :
> 
[snip oflow of 5-byte buffer]

This particular case ``works'' because, by design, propolice will not
attempt to protect structures smaller than 16 bytes.

This can be changed by a simple gcc recompilation... and it's probably
worth doing.

Miod

References:
- Re: Buffer overflow prevention
  - From: Mariusz Woloszyn <emsi@ipartners.pl>
- Re: Buffer overflow prevention
  - From: Jedi/Sector One <j@pureftpd.org>

Prev by Date: Re: Buffer overflow prevention
Next by Date: Re: MSBlast complete recode / analysis
Prev by thread: Re: Buffer overflow prevention
Next by thread: Re: Buffer overflow prevention
Index(es):
- Date
- Thread