Bugtraq mailing list archives
Re: WordPad/riched20.dll buffer overflow
From: glynn () SENSEI CO UK (Glynn Clements)
Date: Sat, 27 Nov 1999 16:22:49 +0100
Christopher Rhodes wrote:
I think one of the major problems with the Linux implementation, and apparently windows too, is that noone pays attention to the added security provided by segmentation (at least to the point of putting the stack on a different segment?)
Having separate non-overlapping stack and data segments causes a great many problems if you want to be able to write programs in C, given that a data pointer has to be able to record the address of any variable, regardless of whether it is static (data segment) or automatic (stack segment). There are workarounds (i.e. foregoing the simplicity of a flat memory model), but these are invariably either inefficient (e.g. the "huge" memory model found on 16-bit x86 C compilers), or not actually C (e.g. the "near" and "far" keywords in the language-which-looks-like-C-but-isn't that was commonly used for 16-bit x86 development). Also, using segmentation pretty much guarantees that your OS cannot be made to run on anything other than the x86 architecture (which is about the worst of the bunch; no sane person would use x86 if wasn't for the compatibility issues). -- Glynn Clements <glynn () sensei co uk>
Current thread:
- WordPad/riched20.dll buffer overflow Pauli Ojanpera (Nov 18)
- Re: WordPad/riched20.dll buffer overflow Bronek Kozicki (Nov 18)
- Re: WordPad/riched20.dll buffer overflow Gerardo Richarte (Nov 18)
- Re: WordPad/riched20.dll buffer overflow Gerardo Richarte (Nov 24)
- (no subject) Swen Persson (Nov 24)
- Re: WordPad/riched20.dll buffer overflow Gerardo Richarte (Nov 24)
- Re: WordPad/riched20.dll buffer overflow pedward () WEBCOM COM (Nov 26)
- Re: WordPad/riched20.dll buffer overflow Christopher Rhodes (Nov 26)
- Re: WordPad/riched20.dll buffer overflow Glynn Clements (Nov 27)
- SCO su patches Alfred Huger (Nov 28)
- Solaris7 dtmail/dtmailpr/mailtool Buffer Overflow UNYUN (Nov 29)
- Page table protection on Intel Jason Spence (Nov 26)
- SuSE Security Announcement - new security tools Marc Heuse (Nov 26)
- 3Com cable modems / Mediaone Signal 11 (Nov 27)
- Re: 3Com cable modems / Mediaone Joseph W. Breu (Nov 29)
- NTmail and VRFY George (Nov 30)
- Netscape Communicator 4.7 - Navigator Overflows Mike Boto (Nov 27)
- Re: WordPad/riched20.dll buffer overflow Crispin Cowan (Nov 27)
- Re: WordPad/riched20.dll buffer overflow Solar Designer (Nov 29)