Re: .NET and buffer overruns
From: spider (spider_at_web.com)
Date: 07/29/03
- Previous message: Keith Patrick: "Re: Is there anyway to limit .NET remoting TCP port access to local access only?"
- In reply to: Keith Patrick: "Re: .NET and buffer overruns"
- Next in thread: Eugene V. Bobukh [MS]: "Re: .NET and buffer overruns"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Mon, 28 Jul 2003 17:39:46 -0700
Thanks for the good news. Hopefully one less security thing to worry about.
Things like the latest "Buffer Overrun In RPC Interface Could Allow Code
Execution" really worry me. Those things I can't do anything about but I
would like to be assured that I'm not overlooking stuff.
"Keith Patrick" <richard_keith_patrick@nospam.hotmail.com> wrote in message
news:eY0rVrVVDHA.1680@tk2msftngp13.phx.gbl...
> Everything I have heard is that managed code is buffer overrun-proof. Of
> course, C++.Net has a flag to prevent buffer overruns, but I still hear
> about overruns in XP, and I read in a post from someone at MS a year ago
or
> so that XP was compiled with C++.Net. I'm not familiar enough with the
> mechanics, but I tend to believe that CLR is overrun-proof, since Java is
> managed as well, and there haven't been any overruns with it (at least as
> far as I have heard). Not sure if C++'s flag is foolproof and that the XP
> code wasn't compiled with the flag set or if the facility is not 100% or
> other.
>
>
- Previous message: Keith Patrick: "Re: Is there anyway to limit .NET remoting TCP port access to local access only?"
- In reply to: Keith Patrick: "Re: .NET and buffer overruns"
- Next in thread: Eugene V. Bobukh [MS]: "Re: .NET and buffer overruns"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
