{[ promptMessage ]}

Bookmark it

{[ promptMessage ]}

Buffer_Overflows - Buffer Overflows Alex Wong Dwayne Bates...

Info iconThis preview shows pages 1–6. Sign up to view the full content.

View Full Document Right Arrow Icon
Buffer Overflows Alex Wong Dwayne Bates
Background image of page 1

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full Document Right Arrow Icon
Acknowledgements Wikipedia and its contributors (various articles; Buffer overflow, scanf, strcpy, Buffer overflow protection, Heap overflow, Stack buffer overflow…) Google Seminar and its presenters Writing Secure Code 2 nd Edition by Michael Howard and David LeBlanc. Microsoft Press 2003.
Background image of page 2
Acknowledgements continued.. Buffer Overflow - OWASP http://www.owasp.org/index.php/Buffer_Overflo w Hello World- Attack Class: Buffer Overflows http://www.cosc.brocku.ca/~cspress/HelloWorld/ 1999/04-apr/attack_class.html#16 FreeBSD Developers' Handbook - Buffer Overflows http://www.freebsd.org/doc/en/books/developer s-handbook/secure-bufferov.html
Background image of page 3

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full Document Right Arrow Icon
Overview Allocate memory (fixed size) Input to the buffer exceeds the buffer size Unchecked bounds overwriting memory Checked bounds Raise exception (Java and .NET) Truncate input What’s in memory? Data and code -- von Neumann architecture
Background image of page 4
Cases and Effects Unallocated page boundary / wrong access mode: SIGSEGV, Access Violation, etc.
Background image of page 5

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full Document Right Arrow Icon
Image of page 6
This is the end of the preview. Sign up to access the rest of the document.

{[ snackBarMessage ]}