Global flags overridden

ID PE148 Level WARNING Category Security

Description

The load configuration directory has non-zero values for the global flags set or clear fields. Global flags are system-specific and are intended for low-level debugging purposes. They should not be overridden on production executables.

Mitigation

  • Make sure you do not change the default value of the GlobalFlagsClear or GlobalFlagsSet fields of the load configuration directory structure.

If using Visual C++:

  • Make sure you do not change the GlobalFlagsClear or the GlobalFlagsSet field values in the _load_config_used symbol somewhere in the application code.

Arguments

This rule has no output arguments.