BlackFriday 2024! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

GAQM Exam CPEH-001 Topic 3 Question 86 Discussion

Actual exam question for GAQM's CPEH-001 exam
Question #: 86
Topic #: 3
[All CPEH-001 Questions]

StackGuard (as used by Immunix), ssp/ProPolice (as used by OpenBSD), and Microsoft's /GS option use _____ defense against buffer overflow attacks.

Show Suggested Answer Hide Answer
Suggested Answer: A

Canaries or canary words are known values that are placed between a buffer and control data on the stack to monitor buffer overflows. When the buffer overflows, it will clobber the canary, making the overflow evident. This is a reference to the historic practice of using canaries in coal mines, since they would be affected by toxic gases earlier than the miners, thus providing a biological warning system.


Contribute your Thoughts:

Gail
6 months ago
Format checking helps, but in this context, I think it's more about what’s guarding the stack.
upvoted 0 times
...
Kallie
6 months ago
Because the /GS option specifically mentions Canary-based protection. Non-executing stack isn't part of it.
upvoted 0 times
...
Maryanne
7 months ago
Yeah, I'm pretty sure it's Canary.
upvoted 0 times
...

Save Cancel