Native Methods

From OWASP
Revision as of 10:09, 18 January 2007 by Dinis.cruz (Talk | contribs)

Jump to: navigation, search

The moment you see native methods (which leave the Java security manager and memory protection), you know you found an area that might contain potential Buffer Overflows, or other C++ type vulnerabilities.

In the .Net Framework this is even more problematic due to the high usage of unmanaged COM objects (Note to Dinis: Put here details about his 'Buffer Overlfows on the .Net Framework' Research)