这样使得操纵返回地址困难多了,但它不会阻止改变调用函数的数据的缓冲区溢出攻击。
This makes it much harder to manipulate the return address, but it doesn't defend against buffer overflow attacks that change the data of calling functions.
恶意软件的一种常见攻击类型,所谓的缓冲区溢出攻击,会使接受输入的程序崩溃,如web浏览器的地址栏或数据库的搜索窗口。
One common type of malware, called a buffer overflow attack, overwhelms programs that accept input, like the address line in a Web browser or a search window for a database.
在不发生返回地址栈溢出时,使用后备栈机制能够获得100%的返回地址预测精度。
With the backup stack technique used to repair the return-address stack, a 100% return-address prediction accuracy can be achieved unless overflow appears.
应用推荐