Register
An alternative design for a canary mechanism place the NULL value just below the return address. What is the rationale for this design decision
171k views
3 votes
An alternative design for a canary mechanism place the NULL value just below the return address. What is the rationale for this design decision

User Senne Verhaegen
by
4.5k points

1 Answer

8 votes

Answer:

This is to prevent attacks using the strcpy() and other methods that would return while copying a null character.

Step-by-step explanation:

Canary is a mechanism used to monitor and prevent buffer overflow. The alternative canary design that places a null value just before the return address is called the terminator canary.

Though the mechanism prevents string attacks, the drawback of the technique is that the value of the canary is known which makes it easy for attackers to overwrite the canary.

User Ninapavlich
by
4.9k points
Ask a Question
Welcome to QAmmunity.org, where you can ask questions and receive answers from other members of our community.

5.2m questions

6.7m answers

Other Questions

What is the first step you would take to create a table of authorities?
In Java a final class must be sub-classed before it. ?? True ?? False
To apply a style to a paragraph, the first step is to position the insertion point in the paragraph. True or False
What machine listens for HTTP requests to come in to a website’s domain?
Certain files, such as the ____ and Security log in Windows, might lose essential network activity records if power is terminated without a proper shutdown. a. Event log b. Password log c. Word log d.
Link Copied!