SAFESEH is disabled

ID PE009 Level ERROR Category Security

Description

The SAFESEH (Safe Exception Handlers) option is disabled for the executable which uses SEH (structured exception handling). This makes it easier to exploit memory corruption vulnerabilities by taking control of the execution flow through the exception handling mechanism.

Mitigation

If using Visual C++, pass the /SAFESEH linker option. Note that this option is only applicable to 32-bit executables, as x64 and ARM executables use different exception handling mechanisms.

Arguments

This rule has no output arguments.