BufferShield 1.01k

BufferShield is a security tool, capable of detecting
and preventing the exploitation of buffer overflows,
responsible for the majority of security related 
problems faced today.

Upon detection it creates an entry within the event log 
and optionally terminates the application in question, 
preventing the execution of the potentially malicious
code.

Buffer overflows are commonly used by hackers to
introduce malicious code into your systems. For
example the LovSan virus used such a buffer overflow
to attack remote systems.

The commercial version of BufferShield is the only
product available for Microsoft platforms allowing the
definition of a protection scope, specifying which
applications or services should or should not be
protected. Additionally the protection scope allows
the exclusion of certain memory ranges that should
be excluded. This is necessary because some
applications actually generate dynamic code on the
stack or heap and attempt to execute it afterwards,
being detected by BufferShield as an attempted
exploitation of a buffer overflow.

BufferShield's key features:

  • Detects code execution on the stack, default
    heap, dynamic heap, virtual memory and data
    segments

  • Can terminate applications in question if a
    buffer overflow was detected

  • Reports to the Windows® event log in
    case of any detected overflows

  • Allows the definition of a protection scope to
    either protect only defined applications or to
    exclude certain applications or memory ranges
    from being protected

The freely available version of BufferShield is only
protecting the following applications:

  • Microsoft Internet Explorer

  • Opera

  • Microsoft Outlook Express

  • Microsoft Outlook
     

BufferShield supports the following operating
systems:

  • Microsoft Windows® NT 4.0 Workstation

    •

  • Microsoft Windows® NT 4.0 Server

  • Microsoft Windows® NT 4.0 Server Enterprise Edition

  • Microsoft Windows® NT 4.0 Terminal Server Edition

    •

  • Microsoft Windows® 2000 Professional

  • Microsoft Windows® 2000 Server

  • Microsoft Windows® 2000 Advanced Server

  • Microsoft Windows® XP Professional

  • Microsoft Windows® XP Home Edition

  • Microsoft Windows® XP Media Center Edition 

  • Microsoft Windows® 2003 Server Standard Edition

    •

  • Microsoft Windows® 2003 Small Business Server

    •

  • Microsoft Windows® 2003 Server Enterprise Edition

  • Microsoft Windows® 2003 Server Web Edition

  • Microsoft Windows® 2003 Datacenter Edition

  

Competitive Analysis