Re: Buffer Overflow

• Previous message: gr00vy: "RE: bill gates' claim about security vulnerabilities per LOC in Unix versus Windows"
• In reply to: pablo gietz: "Buffer Overflow"
• Next in thread: Preston, Tony: "RE: Buffer Overflow"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Tue, 04 Nov 2003 17:02:30 -0800
To: secprog@securityfocus.com

Pablo,

I assume you're talking about Delphi here. The option that will affect
buffer overflows is the Range Checking option. This will prevent buffer
overflows in array and string functions as long as you aren't using long
string types (which are enabled by default as "string"). Fat lot of
good that does.

It also doesn't handle the case where you pass input into other
libraries, such as system API's. Additionally, it slows your program
down. So, while it may be a good tool for testing, I wouldn't rely on
it to secure your code.

As for the other two options, setting them makes your program throw
exceptions on I/O errors, or integer overflow. If you don't catch the
exceptions, the attacker has still achieved a DoS.

cheers,
Ryan Reilly

pablo gietz wrote:

> Hi Secprogrammers
>
> Here my stupid question.
> If I compile my final build with the checkboxes:
> - Range checking ( Checks that array and string subscripts are within
> bounds. Corresponds to {$R}) .
> - I/O checking (Checks for I/O errors after every I/O call.
> Corresponds to {$I}.)
> - Overflow checking ( Checks overflow for integer operations.
> Corresponds to {$Q}.)
>
> checked . Could this minimize the possibility of occurrences of buffer
> overflows or other similar security holes?
>
>
> Thanks
>

• Previous message: gr00vy: "RE: bill gates' claim about security vulnerabilities per LOC in Unix versus Windows"
• In reply to: pablo gietz: "Buffer Overflow"
• Next in thread: Preston, Tony: "RE: Buffer Overflow"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages [NEWS] Multiple ValiCert Security Problems ... * Enterprise VA Host Server for processing validation requests VA API ... Multiple buffer overflows exist in the CGI script, forms.exe, which is ... Analysis of the code and stack contents reveals that the unchecked buffer ... (Securiteam) [REVS] Exploring Adjacent Memory Against strncpy ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... The exploitation of adjacent memory overflows is one of these ... You must know how basic buffer overflows occur. ... Using GDB to Exploit the Vulnerability: ... (Securiteam) Re: Buffer overflows and asctime() ... Using the sample code the buffer overflow gets even WORST of course. ... I proposed that the sample code writes a '*' when a field overflows ... is that everybody attacks the proposed fix without ever proposing ... for instance that asctime() could ... (comp.std.c) Re: Buffer Overflows ... instead of pointing it to where the buffer they are overflowing is ... You can place shellcode anywhere you like, just as long as you can write ... program name and the environment variables. ... Buffer overflows demystified by Murat Balaban: ... (Vuln-Dev) Re: [Full-Disclosure] Coming soon: CPU fix for buffer overflows ... leading to cruddier and more bloated code and yet more security ... > data to the buffer than it can hold, causing it to overflow into the next ... > processor chips that will deal with the problem. ... > buffer overflows when used with a new version of Windows XP. ... (Full-Disclosure)