How 3rd party buffer overflow protection programs work, and their limitations

Discussion in 'other anti-malware software' started by MrBrian, Apr 26, 2008.

Thread Status:
Not open for further replies.
  1. MrBrian

    MrBrian Registered Member

    Joined:
    Feb 24, 2008
    Posts:
    6,032
    Location:
    USA
  2. alex_s

    alex_s Registered Member

    Joined:
    Aug 13, 2007
    Posts:
    1,251
  3. MrBrian

    MrBrian Registered Member

    Joined:
    Feb 24, 2008
    Posts:
    6,032
    Location:
    USA
    You're welcome :).

    For the record, Tyler Durden has stated that Comodo Memory Firewall does not use stack backtracing, and thus isn't vulnerable to fake frames. Mr. Durden has also stated that the exact operation of Comodo Memory Firewall is a secret, but has indicated that it uses hooks (see http://forums.comodo.com/feedbackco...ck_overflow-t22239.0.html;msg155855#msg155855).

    Throughout the topic https://www.wilderssecurity.com/showthread.php?t=207074, I have posted information regarding the limitations of buffer overflow protection technologies built into Windows. In particular, see https://www.wilderssecurity.com/showpost.php?p=1229847&postcount=119 and https://www.wilderssecurity.com/showpost.php?p=1229869&postcount=121.
     
    Last edited: Apr 26, 2008
  4. MrBrian

    MrBrian Registered Member

    Joined:
    Feb 24, 2008
    Posts:
    6,032
    Location:
    USA
    The link I gave in the first post had some text cut off at the beginning. Here is the full article.
     
Loading...
Thread Status:
Not open for further replies.