Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
The system must use available memory address randomization techniques.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-22576 | GEN008420 | SV-26251r1_rule | ECSC-1 | Low |
| Description |
|---|
| Successful exploitation of buffer overflow vulnerabilities relies in some measure to having a predictable address structure of the executing program. Address randomization techniques reduce the probability of a successful exploit. |
| STIG | Date |
|---|---|
| UNIX SRG | 2013-03-26 |
Details
| Check Text ( C-29316r1_chk ) |
|---|
| Determine if the system is configured to use any available memory address randomization techniques. If it is not, this is a finding. |
| Fix Text (F-26348r1_fix) |
|---|
| Configure the system to use any available memory address randomization techniques. |