How 3rd party buffer overflow protection programs work, and their limitations

Please see 'Bypassing 3rd Party Windows Buffer Overflow Protection' (http://kd7yhr.org/bushbo/misc/phrack/phrack62/p62-0x05_Bypassing_Win_BufferOverflow_Protection.txt) for the full article, which is highly technical.

 

"In conclusion, the majority of current buffer overflow protection
implementations are flawed, providing a false sense of security and
little real protection against determined attackers. "

Thanks for interesting reading.

 

You're welcome .

For the record, Tyler Durden has stated that Comodo Memory Firewall does not use stack backtracing, and thus isn't vulnerable to fake frames. Mr. Durden has also stated that the exact operation of Comodo Memory Firewall is a secret, but has indicated that it uses hooks (see http://forums.comodo.com/feedbackco...ck_overflow-t22239.0.html;msg155855#msg155855).

Throughout the topic https://www.wilderssecurity.com/showthread.php?t=207074, I have posted information regarding the limitations of buffer overflow protection technologies built into Windows. In particular, see https://www.wilderssecurity.com/showpost.php?p=1229847&postcount=119 and https://www.wilderssecurity.com/showpost.php?p=1229869&postcount=121.

 

The link I gave in the first post had some text cut off at the beginning. Here is the full article.