code analysis

From: huber_geo@hotmail.com
Date: Mon Jun 20 2005 - 10:58:07 EDT

• Next message: Erez: "RE: generating a network map"
• Previous message: Marc.Werner@t-systems.com: "Mapping foreign networks"
• Next in thread: m.delibero@comcast.net: "Re: code analysis"
• Maybe reply: m.delibero@comcast.net: "Re: code analysis"
• Reply: Aleksander P. Czarnowski: "RE: code analysis"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

In addition to doing security audits for my clients,
I occasionally am asked to to code reviews for
products my clients are thinging of using. Normally
the code is in C, asm or C++ which I have no
problem with. However, the most recent code base
I have been tasked to review has substantial parts
written in Bordand Delphi and Modula-2 which I have
no experience with. So I am looking for leads for
the following questions:

1) are are the security vulnerabilites associated
   with each of the above languages. For example,
   do these languages have the potentail for
   buffer overflows?

2) are there any auditing tools (ala RATS or
   flawfinder) for these languages.

Thanks for your help. Additionally, if this is
not an appropriate forum for these questions,
could you direct me to a better one?

thanks,
George Huber

• Next message: Erez: "RE: generating a network map"
• Previous message: Marc.Werner@t-systems.com: "Mapping foreign networks"
• Next in thread: m.delibero@comcast.net: "Re: code analysis"
• Maybe reply: m.delibero@comcast.net: "Re: code analysis"
• Reply: Aleksander P. Czarnowski: "RE: code analysis"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:54:25 EDT