PPT-Buffer Overflow Memory four basic read-write memory regions in a program

Stack in the higher parts of memory Grows down Used when a function is called Data Area Global variables not inizialited to zero BSS Block Started by Symbol Segment Global variables . 16. Buffer Overflow. modified from slides of . Lawrie. Brown. Buffer Overflow. a very common attack mechanism. first wide use by the Morris Worm in 1988. prevention techniques known. still of major concern. . Chapter 10 Malicious software. Part B. Index. Social Engineering. Malware Payload. Countermeasures of malware. DDoS. Buffer overflow. Social Engineering. Tricking user to assist in the comprise of their own systems or personal information. Buffer Overflow. modified from slides of . Lawrie. Brown. Buffer Overflow. a very common attack mechanism. first wide use by the Morris Worm in 1988. prevention techniques known. still of major concern. Gabe Kanzelmeyer. CS 450. 4/14/10. Overview. What is buffer overflow?. How memory is processed and the stack. The threat. Stack overrun attack. Dangers. Prevention. What is buffer overflow?. A buffer (array/string) that holds data. What is an Exploit?. An . exploit. . is any . input. (i.e., a piece of software, an argument string, or sequence of commands) that takes advantage of a bug, glitch or vulnerability in order to cause an attack. Basic . Memory Corruption . Attacks. Original slides were created by Prof. Dan . Boneh. Memory corruption attacks. . Attacker’s goal. :. Take over target machine (e.g. web server). Execute arbitrary code on target by . Memory Corruption . Attacks. Original slides were created by Prof. Dan . Boneh. Memory corruption attacks. . Attacker’s goal. :. Take over target machine (e.g. web server). Execute arbitrary code on target by . Memory Corruption. . Attacks. Original slides were created by Prof. Dan . Boneh. Memory corruption attacks. . Attacker’s goal. :. Take over target machine (e.g. web server). Execute arbitrary code on target by . modified from slides of . Lawrie. Brown. Buffer Overflow. a very common attack mechanism. first wide use by the Morris Worm in 1988. prevention techniques known. still of major concern. legacy of buggy code in widely deployed operating systems and applications. modified from slides of . Lawrie. Brown. Buffer Overflow. a very common attack mechanism. first wide use by the Morris Worm in 1988. prevention techniques known. still of major concern. legacy of buggy code in widely deployed operating systems and applications. modified from slides of . Lawrie. Brown. Buffer Overflow. a very common attack mechanism. first wide use by the Morris Worm in 1988. prevention techniques known. still of major concern. legacy of buggy code in widely deployed operating systems and . The memory unit . supports . two fundamental operations: Read and . Write. . The . read operation read . a previously stored . data . and . the write operation stores . a . value . in memory. See . Dan Fleck. CS469 Security Engineering. Reference: . http://. www.thegeekstuff.com. /2013/06/buffer-overflow/ . Coming up: Buffer Overflows. 1. 1. Buffer Overflows. Buffer overflows occur when some sized portion of memory is overwritten with something bigger.. Lecture 19. April . 4. th. , . 2012. Bus-Based Shared Memory (. Con’t. ). Distributed Shared Memory. Prof John D. Kubiatowicz. http://www.cs.berkeley.edu/~kubitron/cs252. Recall: Natural Extensions of Memory System.