Security cookie is absent for some object files

ID PE014 Level ERROR Category Security

Description

Stack protection security cookie is absent for some object files. This makes it easier to exploit stack memory corruption vulnerabilities by taking control of the execution flow when returning from a function call.

Mitigation

If using Visual C++:

  • Make sure you are using the /GS compiler option for all project source files.
  • Make sure that you link your project with external libraries built with the /GS compiler option.

Arguments

This rule has the following output arguments:

  • gs_count - Number of object files with the security cookie enabled
  • c_and_c_plus_plus_count - Total number of C/C++ object files used to build the executable