When a buffer overflow detection occurs, the scanner blocks the
detection and a message is recorded in the
On-Access Scan Messages dialog box. You can
view the dialog box, then decide whether to take any additional actions.
The actions you can take include:
- Removing the message — Select the item in the list, then
click
Remove.
- Creating an exclusion — If the detected process is one
that you legitimately use, or a false positive, create an exclusion using the
information in the
On-Access Scan Messages dialog box. Review
the information in the
Name column to determine the name of the
process that owns the writable memory that is making the call. Use the process
name to create an exclusion.
- Submitting a sample to
McAfee Labs for
analysis — If the scanner detects something that you think it should not
detect, or does not detect something that you think it should, you can send a
sample to
McAfee Labs.