Comodo Memory Firewall - Buffer Overflow Detection And Prevention Tool »

Posted on Monday, January 28, 2008 by Venkat |

Buffer Overflow Attack is one of the most serious and common attack types on the Internet. Comodo Memory Firewall is a buffer overflow detection and prevention tool which provides the defence against data theft, computer crashes and system damage by preventing most types of buffer overflow attacks.

Comodo Memory Firewall detects the following types of attack:

Detection of Buffer Overflows which occur in the STACK memory,
Detection of Buffer Overflows which occur in the HEAP memory,
Detection of ret2libc attacks,
Detection of corrupted/bad SEH Chains

Buffer OverFlow Attack Definition

A buffer overflow is an anomalous condition where a process attempts to store data beyond the boundaries of a fixed-length buffer. The result is that the extra data overwrites adjacent memory locations. The overwritten data may include other buffers, variables and program flow data and may cause a process to crash or produce incorrect results. They can be triggered by inputs specifically designed to execute malicious code or to make the program operate in an unintended way.

I’ve heard of such attacks but never thought a firewall would be available for further security.Lets see how this pans out from the same team that came out with the free Comodo Firewall Pro, a free firewall that won many hearts.