3 Aug
2005
3 Aug
'05
9:33 a.m.
On Wed, 03 Aug 2005 03:49:43 PDT, Aaron Glenn said:
...here's what the junior kernel hacker in me doesn't quite understand - doesn't software like ProPolice and it's brethren mitigate this type of vulnerability specifically? What, precisely, prevents Cisco from implementing such code in with their architecture?
"mitigate vulnerability" != "prevent vulnerability". As long as it's a von Neumann architecture rather than a Harvard architecture, there's potential issues. Note that many mitigation strategies are basically attempts to make it more Harvard-like.... Whether mitigation is sufficient is a topic for another list..