GAQM Exam CPEH-001 Topic 7 Question 88 Discussion

Actual exam question for GAQM's CPEH-001 exam

Question #: 88
Topic #: 7

StackGuard (as used by Immunix), ssp/ProPolice (as used by OpenBSD), and Microsoft's /GS option use _____ defense against buffer overflow attacks.

ACanary

BHex editing

CFormat checking

DNon-executing stack

Show Suggested Answer

Suggested Answer: A

Canaries or canary words are known values that are placed between a buffer and control data on the stack to monitor buffer overflows. When the buffer overflows, it will clobber the canary, making the overflow evident. This is a reference to the historic practice of using canaries in coal mines, since they would be affected by toxic gases earlier than the miners, thus providing a biological warning system.

by Clorinda at May 18, 2024, 02:05 PM

Limited Time Offer

25%

Off

Get Premium CPEH-001 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Jolene

5 months ago

A canary, like the one in the coal mine! Except this time, it's a digital canary, and it's here to save our stacks from overflowing. Clever, right?

upvoted 0 times

...

5 months ago

Canary, for sure. It's like a little watchdog guarding the stack against any potential intruders. Very clever stuff.

upvoted 0 times

Clorinda

5 months ago

I think the Non-executing stack option is also effective in preventing buffer overflow attacks.

upvoted 0 times

...

Doretha

5 months ago

D) Non-executing stack

upvoted 0 times

...

Albina

5 months ago

Yes, the Canary defense is a great way to protect against buffer overflow attacks.

upvoted 0 times

...

Anissa

5 months ago

A) Canary

upvoted 0 times

...

5 months ago

A) Canary

upvoted 0 times

...