Buffer Overflow Testing Application!

[Guest]

[MikeH]

I am unable to run the Buffer Overflow Testing Application from a limited account.
Does this imply I am immune from buffer overflow vulnerabilities in a limited account?

When running the Buffer Overflow Testing Application from an administrative account, the application runs and Comodo Memory Firewall flags the buffer overflow vulnerabilities as it is designed to do.

Regards,
Mike

[Tyler Durden]

Does this imply I am immune from buffer overflow vulnerabilities in a limited account?

No, CMF works on limited accounts too.

[Melih]

I am unable to run the Buffer Overflow Testing Application from a limited account.
Does this imply I am immune from buffer overflow vulnerabilities in a limited account?

When running the Buffer Overflow Testing Application from an administrative account, the application runs and Comodo Memory Firewall flags the buffer overflow vulnerabilities as it is designed to do.

Regards,
Mike

No you are not immune from BO on a limited account.
Cos a vulnerability could exploit something on your system and get in, the vulnerability is still there, just that our testing app didn't work on limited account.

thanks
Melih

[patrice58]

I have CMF and it failed all 3 tests. When I first ran the test when I thought CMF was running but for some weird reason after a factory reset the tick for start up with windows was unchecked. Me not knowing that ran the test all 3 failed (as it would) so found out what happened make CMF start by clicking on the desktop ran the test again failed all 3 and thought ok let me restart the pc and run the test which I did and still failed now 1st how can I get the test to say passed tho that is less important and 2nd does the fail message means I am not fully protected even with CMF?

[SS26]

My respect to Comodo team!   (B)
BO tests are really brilliant idea. And i'm gonna to tell why.

When i tell people there is no effective protection nowadays from BO exploits except Comodo Memory Firewall, some of them begin to argue: you are not right - we have DEP and hardware protection (hardware support for DEP?) on modern processors.
Instead of disputing with them, i say: no problem, you can test how DEP and hardware functions of your processors protect you - check these tests (give them links to your tests).

After that nobody so far continues to argue 
Some say "thanks, we didn't know..."  (S)

[Melih]

My respect to Comodo team!   (B)
BO tests are really brilliant idea. And i'm gonna to tell why.

When i tell people there is no effective protection nowadays from BO exploits except Comodo Memory Firewall, some of them begin to argue: you are not right - we have DEP and hardware protection (hardware support for DEP?) on modern processors.
Instead of disputing with them, i say: no problem, you can test how DEP and hardware functions of your processors protect you - check these tests (give them links to your tests).

After that nobody so far continues to argue 
Some say "thanks, we didn't know..."  (S)

Indeed, these test are to show how insecure we are. The last thing we want is for users to have "false sense of security". Educating and getting them out of this false sense of security is an important step!

thanks

Melih

[patrice58]

What about if the test says that you are not protected as mine does even tho you have CMF installed. Nobody seems to answer that tho?

[SS26]

What about if the test says that you are not protected as mine does even tho you have CMF installed. Nobody seems to answer that tho?

Is CMF running when tests are performed? I didn't experience any problems: CMF 2.0.4.20 passed for me all tests easily.

[patrice58]

Yeah it is running but everybody seems to shy away from answering that question as somebody else has posted the same question somewhere else has the poster had a reply? Is the pope black?

[Blas]

Maybe Im just viewing your question from a way too simple point, but it only could mean that either you have a corrupt cmf installation or there is a kind of incompatibility with your system. Is there a green check in the lower left corner of the main cmf window?

[patrice58]

nah it's red but even before the new version when the icon was green still the same fail notice

[Blas]

Anyway it doesn't sound normal. Have you posted it in a detailed bug report? Are you running a kind of striped os nlited OS? I mean services disabled ect. What other resident softwares are you using?

[Graham1]

Hi

Do you have any plans to release the "Buffer Overflow Testing Application" as a standalone tool? (i.e similar to Comodo Leak Tests). Rather than having to install this tool, just unzip and run the executable. Just an idea.

[Kyle]

I agree with Graham1..

[JoWa]

Or include BO tests in CLT?

[Tags:]