WX section is present
ID PE011 Level ERROR Category Security
Description
A WX (writable, executable) section is present in the executable. A section which is marked writable and executable at the same time makes vulnerability exploitation much easier. It may provide an easy target for writing the shellcode with subsequent execution.
Mitigation
- Make sure you are not merging sections with different memory access attributes.
- Do not explicitly change memory attributes. If doing so, do not mark any sections writable and executable at the same time.
If using Visual C++:
- Look for the
/SECTIONoption in the linker command line or the corresponding#pragma sectiondeclarations in the code.
Arguments
This rule has the following output arguments:
-
section_name- Affected section name
Loading...
Unable to load this documentation page.