Buffer Overflow Defences

• Use a language with strong typing and array checking
  • Java
  • C#
  • Ada
• Avoid fixed buffers
• Avoid unchecked routines using fixed buffers (e.g. gets, strcpy)
• Use routines that have buffer length as an argument (e.g. fgets, strncpy)
• Use libraries and execution environments that protect against stack smashing attacks
• When writing to a fixed buffer, check index against the buffer's size

• PreviousHow does a Buffer Overflow Work?
• Contents
• NextUnix Access Control

 Last change: Wednesday, June 23, 2004 5:28 pm
 Unless otherwise expressly stated, all original material on this page created by Diomidis Spinellis is licensed under a Creative Commons Attribution-Share Alike 3.0 Greece License.