Understanding Stack Buffer Overflow Vulnerabilities
Stack buffer overflow is a critical security issue caused by writing more data to a buffer than allocated, leading to bugs, crashes, and potential attacks. This vulnerability, exemplified by the Twilight Hack, allows executing arbitrary code. Learn about its causes, implications, and mitigation strategies through examples and a lab exercise. Explore the dangers, tools, and solutions associated with stack buffer overflows.
Download Presentation
Please find below an Image/Link to download the presentation.
The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author. Download presentation by click this link. If you encounter any issues during the download, it is possible that the publisher has removed the file from their server.
E N D
Presentation Transcript
Stack buffer overflow http://en.wikipedia.org/wiki/Stack_buffer_overflow
What is a stack buffer overflow? Caused when a program writes more data to a buffer on the stack than what was initially allocated for the buffer Causes bugs, crashes, and can be used in an attack known as stack smashing (executing arbitrary code on a protected machine) Notable Example: Twilight Hack
#include <string.h> void foo (char *bar) { char c[12]; strcpy (c, bar); //no bound } int main (int argc, char **argv) { foo(argv[1]); }
Normal Execution hello is written to the char buffer. Note the null terminating byte. #include <string.h> void foo (char *bar) { char c[12]; strcpy (c, bar); //no bound } int main (int argc, char **argv) { foo(argv[1]); }
Buffer Overflow! Called with argument: AAAAAAAAAAAAAAAAAAAA\x08 \x35\xC0\x80 The return address now points to the start of the 12-byte buffer.
Lab 3 Due Friday April 22. Stack buffer overflow problem, very similar to what we have described today.
