Vulnerability Development mailing list archives
Re: Java and buffer overflows
From: "Felix Harris" <felix () cannabis net>
Date: Mon, 24 Jun 2002 18:43:01 +0100
I was wondering if code written in JAVA(or .NET) is vulnerable to buffer overflows. If yes,what are the differences in the proccess of exploiting? Any online source?
well afaik one of the main reasons for creating Java was to make it a safe language, as there is no complications between pointers and buffers. Buffers are also lengthchecked, and pointers dont really have the required scope to be exploited. If there was an exploit for a java program, it would probably exist as a bug in the virtual machine, or in a call to a c/c++ program/library. IIRC, there was something about zlib being exploitable? -- Felix Harris felix () cannabis net I say goodbye and raindrops taste like tears In the pouring rain I stand and die alone
Current thread:
- Java and buffer overflows cyber_rider (Jun 23)
- Re: Java and buffer overflows Felix Harris (Jun 25)
- Re: Java and buffer overflows KF (Jun 26)
- Re: Java and buffer overflows Javier Blanque (Jun 26)
- Re: Java and buffer overflows ash (Jun 26)
- Re: Java and buffer overflows Anibal Ambertin (Jun 27)
- Re: Java and buffer overflows KF (Jun 26)
- Re: Java and buffer overflows Rafael Anschau (Jun 25)
- Re: Java and buffer overflows Branko Ivanovic (Jun 26)
- Re: Java and buffer overflows Nelson Sampaio Araujo Junior (Jun 26)
- Re: Java and buffer overflows Rafael Anschau (Jun 26)
- Re: Java and buffer overflows Dave Aitel (Jun 26)
- Re: Java and buffer overflows KF (Jun 27)
- Re: Java and buffer overflows Felix Harris (Jun 25)