grsecurity forums


https://forums.grsecurity.net./

Paxtest reports vulnerabilities

https://forums.grsecurity.net./viewtopic.php?f=3&t=2461

Page 1 of 1

Paxtest reports vulnerabilities

PostPosted: Wed Oct 06, 2010 4:46 am
by cmouse
I ran paxtest and it says that I am still vulnerable for

Return to function (strcpy) :
Return to function (strcpy, RANDEXEC) :
Return to function (memcpy) : Vulnerable
Return to function (memcpy, RANDEXEC) : Vulnerable

Is there anything I can do to prevent this? Or would this require custom compilation of libc?

Re: Paxtest reports vulnerabilities

PostPosted: Thu Oct 07, 2010 2:24 pm
by PaX Team
cmouse wrote:Is there anything I can do to prevent this?
yes, you could for example search this very forum and find stuff like this http://forums.grsecurity.net/viewtopic.php?f=3&t=2084&p=8616#p8616 ;).
Or would this require custom compilation of libc?
the tested functions are only a simple representation of a much more generic attack metod and changing glibc wouldn't do anything against that.
All times are UTC - 5 hours [ DST ]
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Group
https://www.phpbb.com/