Firewall Wizards mailing list archives

Re: Buffer Overruns

From: Crispin Cowan <crispin () cse ogi edu>
Date: Fri, 17 Dec 1999 23:56:55 +0000

Michael Kelly wrote:

 I really feel silly asking this, but;
 Can these buffer overrun bugs penetrate firewalls?


It's highly circumstantial.  It depends on:

   * Where the buffer overflow attack needs to go.  Is it just an URL?
     A tag in an HTML file?  A tag in an RTF file?  Etc.
   * What kind of firewall you're using.  They go through packet filters
     like water through a sieve.  They *might* be stopped by a proxy
     filter, depending on what the proxy is looking for.

I'm trying to convince the boss to ditch IE in favor of Netscape.
(which is only
slightly better)


I don't see a huge difference right now.  When Mozilla goes beta, I'll
probably StackGuard it for Linux.

Crispin
-----
Crispin Cowan, CTO, WireX Communications, Inc.    http://wirex.com
Free Hardened Linux Distribution:                 http://immunix.org

Current thread:

Buffer Overruns Michael Kelly (Dec 17)
- Re: Buffer Overruns Joseph S D Yao (Dec 18)
- Re: Buffer Overruns Marcus J. Ranum (Dec 18)
- Re: Buffer Overruns Crispin Cowan (Dec 18)
  - Re: Buffer Overruns Michael Kelly (Dec 20)
- Re: Buffer Overruns Matt Curtin (Dec 18)
  - Re: Buffer Overruns Frederick M Avolio (Dec 20)
    - RE: Buffer Overruns Michael D. Hunter-Linville (Dec 21)
    - Re: Buffer Overruns Saravana Ram (Dec 24)
- <Possible follow-ups>
- Re: Buffer Overruns Ryan Russell (Dec 18)
- Re: Buffer Overruns Steven M. Bellovin (Dec 18)
- Re: Buffer Overruns Vin McLellan (Dec 20)
  - Re: Buffer Overruns Joseph S D Yao (Dec 21)
    - OT - Rant on State of S/w Engr (was Re: Buffer Overruns) Lim Wei Siong Vincent (Dec 22)

(Thread continues...)