Is buffer-overflow considered a "solved problem" ? (at least for future systems) -



Is buffer-overflow considered a "solved problem" ? (at least for future systems) -

i looking @ various buffer/heap/stack protection technologies such pax, dep, nx, canaries, etc

and new 1 smep - http://vulnfactory.org/blog/2011/06/05/smep-what-is-it-and-how-to-beat-it-on-linux/

assuming using latest kernel on latest mainstream processor assuming recompile apps various compiler protections assuming run dep, aslr nx bit whatever protection

is reasonable buffer-overflow attack fail? , has been solved future systems?

as corollary, true implemented, current win7 systems hopelessly vulnerable rot , other techniques particularly on 32bit apps ?

p.s. purposely not going "managed code safe" argument here

[disclaimer] not advocating sloppy coding. realize there many other attacks. know existing systems far outnumber "idealized" security configuration

no, buffer-overflow not solved problem, @ to the lowest degree in unmanaged code.

the basic problem technologies listed (dep/nx, aslr, canaries, smep) happen after fact: cannot solve buffer overflow problem, because not prevent root cause - buffer overflow , memory corruption has already happened.

all of schemes 'good' unreliable heuristic ways effort either observe fault after corruption happens before becomes working exploit, or create hard engineer reliable working exploit.

e.g. dep, aslr, , canaries on windows vista , 7 can circumvented rot plus other techniques, , hence raise difficulty bar of creating working exploit. but, difficulty increment quite significant. point of techniques.

if interested in solving problem @ root preventing original buffer corruption, think productive, bring give-and-take of managed code...

stack-overflow buffer-overflow aslr dep

Comments

Post a Comment

Popular posts from this blog

iphone - Dismissing a UIAlertView -

iphone - Dismissing a UIAlertView - i set in app purchase app, , when user taps button, purchase started. basically, tap button, , depending on speed on net connection, waiting 10 seconds until new alert view comes asking if purchase product. user tap button multiple times since nil came up, , multiple purchase alert views come up. additionally, maybe seen user app bug. in end, problem. i want alert view come spinning wheel says "loading..." when users taps purchase button. problem is, how dismiss when new alert view comes asking user if want purchase product? if ([uialertview alloc] says: @"whatever apple's alert view says") { //dismiss "loading..." alert view here } i uncertainty work, input appreciated. thanks! you need have access alertview. can this. create alertview instance var in app delegate , when want show loading initialize instance var assign property , when want dismiss phone call [alertviewinstance d...
Read more

intellij idea - Update external libraries with intelij and java -

intellij idea - Update external libraries with intelij and java - simple plenty really. i'm using apache jars, i'll create changes jar's every often. these jars listed external libs in intelij (i.e classpath looking install dir of jar's). when create changes intelij doesn't seem know new implementation. have remove jar external library , re-ad it. does know have intelij picks changes automatically ? i've done clean , rebuild project had little effect. you can go preferences -> build, execution, deployment -> build tools -> maven -> importing , check box says import maven projects automatically . in mac, can command + shift + a , come in action reimport , click on reimport maven projects . intellij-idea
Read more

javascript - send data from a new window to previous window in php -

javascript - send data from a new window to previous window in php - i have image in main.php file : <img src="..\images\image.gif" class="cur" onclick="imgwin();"> when click on image below function has called : function imgwin() { imagewin=window.open("../pages/img.php","imagewin","toolbar=no,width=500,height=200,directories=no,menubar=no,scrollbars=yes"); } this function opens img.php in new window img.php file : <html> <head> <title>upload image</title> </head> <body> <form name="imgform" method="get" action="#"> address : <input type="file" name="imgurl" size="50"> description : <input type="text" name="description" size="50"> <input type="submit" value="sumbit...
Read more