Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Bugtraq> 1998_3

Bugtraq archives for 3rd quarter (Jul-Sep) 1998: Re: A way to prevent buffer overflow exploits? (was: "Any user

Re: A way to prevent buffer overflow exploits? (was: "Any user

Mark Wooding (mdwEBI.AC.UK)
Wed, 5 Aug 1998 16:40:31 -0000

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Joe: "Re: Object tag crashes Internet Explorer 4.0"
Previous message: Pavel Kankovsky: "Re: Object tag crashes Internet Explorer 4.0"
In reply to: Crispin Cowan: "Re: A way to prevent buffer overflow exploits? (was: "Any user"

Crispin Cowan <crispinCSE.OGI.EDU> wrote:

> John D. Hardin wrote:
>
> > Or how about automatically allocating space just for local strings? This
> > would take care of buffer overflows with minimal impact, wouldn't it?
>
> That would break the C standard, which states that local variables are
> allocated in consecutive memory, with optional padding between them.

Cobblers.

You're thinking of structure allocation: the standard places no
restrictions on where implementations choose to place variables with
automatic storage duration.

-- [mdw]

Next message: Joe: "Re: Object tag crashes Internet Explorer 4.0"
Previous message: Pavel Kankovsky: "Re: Object tag crashes Internet Explorer 4.0"
In reply to: Crispin Cowan: "Re: A way to prevent buffer overflow exploits? (was: "Any user"