Upload wijit
View 213
Download 1
Embed Size (px) 344 x 292 429 x 357 514 x 422 599 x 487
DESCRIPTION
L3 - Buffer Overflows Really Simple--print
Citation preview
Herbert Bos VU University Amsterdam
A (really) simple introduction to buffer overflows
Herbert Bos
Vrije Universiteit Amsterdam
course repository
Exploits
program has a security hole
exploit = input that abuses the vulnerability
In this module we will discuss an example:
the Buffer overflow
software
sequence of instructions in memory logically divided in functions that call
each other function IE calls function getURL to read
the corresponding page
in CPU, the program counter contains the address in memory of the next instruction to execute normally this is the next address
(instruction 100 is followed by instruction 101, etc)
not so with function call
200
201
202
203
204
100
101
102
103
IE
getU
RL
104
call getURL
return result
so how does our CPU know where to return?
it keeps administration
on a stack 200
sta
ck
1020
1021
1022
1023
1024
PC
call readURL
real functions have variables
read U
getURL ()
{
char Buf[10];
read(keyboard,Buf,128);
get_webpage (Buf);
}
IE ()
getURL ();
1019
1018
1017
1016
1015
1014
1013
1012
1011
1010
Buf
call read
what is next?
we have learned a lot
but where are the vulnerabilities?
and how do we exploit them?
Exploit 103
That is it, really
all we need to do is stick our program in the buffer
Lab 2: Buffer Overflows
Exploits Buffer Overflows and Format String Attacks
Lab 2: Buffer Overflows - Wayne State Universitywebpages.eng.wayne.edu/~fy8421/16sp-csc5991/labs/lab2-instructio… · Lab 2: Buffer Overflows Introduction In this lab, you will learn
CS390S, Week 5: Buffer Overflows - Purdue · PDF fileBuffer Overflows a.k.a. "Buffer Overrun" A buffer overflow happens when a program attempts to write data outside of the memory
Writing Windows Buffer Overflows _ Mad Irish
Buffer Overflows with Content - Lamar Universitygalaxy.cs.lamar.edu/~bsun/forensics/slides/Exploits.pdf · 2007-08-28 · Detecting Buffer Overflows by Protocol Signatures • Protocol
Exploiting buffer overflows
Stack Buffer Overflows at W ork Secure Bit
Windows Heap Overflows David Litchfield. Windows Heap Overflows Introduction This presentation will examine how to exploit heap based buffer overflows
Buffer Overflows - courses.cs.washington.edu€¦ · Buffer overflow bugs can allow attackers to execute arbitrary code on victim machines. L15: Buffer Overflows CSE351, Autumn 2019
Buffer Overflows 101: Some Assembly Required
Buffer Overflows - uniroma1.itparisi/Risorse/BufferOverflow.pdf · 2 3 Buffer Overflows a.k.a. "Buffer Overrun" A buffer overflow happens when a program attempts to read or write
1.Buffer Overflows
Menos Buffer Overflows, más SQL Injections
Buffer Overflows Dummies 481 - SANS
Buffer Overflows and Defenses CS 419: Computer Security
Buffer overflows - courses.cs.washington.edu€¦ · Buffer Overflows Spring 2016 x86-64 Linux Memory Layout ¢ Stack § Runtime stack (8MB limit) § E. g., local variables ¢ Heap
Oscillations and Buffer Overflows in Video Streaming under Non
Linux Stack Based Buffer Overflows
Memory Safety and Buffer Overflows - user.eng.umd.edudanadach/Security_Fall_19/02-overflows_19.pdf · Memory Safety and Buffer Overflows (with material from Mike Hicks, Dave Levin
MUTATION-BASED TESTING OF BUFFER OVERFLOWS, SQL …
Computer Security and Penetration Testing Chapter 12 Buffer Overflows
2 buffer overflows
Buffer Overflows James Walden Northern Kentucky University
Buffer Overflows Etc
Finite Buffer Fluid Networks with Overflows
Buffer Overflows
Buffer Overflows with Content
Lab 2: Buffer Overflows - Computer Science - Wayne … 2: Buffer Overflows Introduction In this lab, you will learn how buffer overflows and other memory vulnerabilities are used to
Lab 2: Buffer Overflowswebpages.eng.wayne.edu/.../labs/lab2-instruction.pdf · 2017. 12. 27. · Lab 2: Buffer Overflows Introduction In this lab, you will learn how buffer overflows
