PPT-Buffer Overflow Memory four basic read-write memory regions in a program

Stack in the higher parts of memory Grows down Used when a function is called Data Area Global variables not inizialited to zero BSS Block Started by Symbol Segment Global variables . 15-213: Introduction to Computer Systems. Recitation 6, Oct 1, 2012. Alexander Malyshev (amalyshe). Section A, 10:30a – 11:20p, WeH 4623. Agenda. Buffer overflow. Writing a C program. Makefiles. Revision Control. Serious Note. Try a web search for “buffer overflow exploit”.. Check alt.2600, rootshell.com, antionline.com – you can find long lists of . exploits. based on buffer overflow.. Even the original version of . What is an Exploit?. An . exploit. . is any . input. (i.e., a piece of software, an argument string, or sequence of commands) that takes advantage of a bug, glitch or vulnerability in order to cause an attack. Dr. X. Metasploitable. Not everything is what it looks like. …. You opened a reverse shell with root priviledges. B. ut did you?. Metasploitable. There was a bug. You were root back on the kali VM not the . Stack frame layout. #include <. string.h. >. void foo (char *bar). {. . char c[12];. . . strcpy. (c, bar); //no bound. }. int. main (. int. . argc. , char **. argv. ). {. . foo(. argv. & . Rootkits. Warning. Do not use hacking tools unless you are . sure . you have . sysadmin’s. permission.. Company policy .  fired/suspended. Illegal Go to Jail. Honor Code. Just because you have a set of master-keys does NOT give you permission to drive anyone’s car!. Dr. X. Metasploitable. Not everything is what it looks like. …. You opened a reverse shell with root priviledges. B. ut did you?. Metasploitable. There was a bug. You were root back on the kali VM not the . Memory Corruption . Attacks. Original slides were created by Prof. Dan . Boneh. Memory corruption attacks. . Attacker’s goal. :. Take over target machine (e.g. web server). Execute arbitrary code on target by . Chih. Hung Wang. Reference:. 1. B. Chess and J. West, Secure Programming with Static Analysis, Addison-Wesley, 2007.. 2. R. C. . Seacord. , Secure Coding in C and C , Addison-Wesley, 2006.. 1. Introduction (1). modified from slides of . Lawrie. Brown. Buffer Overflow. a very common attack mechanism. first wide use by the Morris Worm in 1988. prevention techniques known. still of major concern. legacy of buggy code in widely deployed operating systems and applications. modified from slides of . Lawrie. Brown. Buffer Overflow. a very common attack mechanism. first wide use by the Morris Worm in 1988. prevention techniques known. still of major concern. legacy of buggy code in widely deployed operating systems and applications. modified from slides of . Lawrie. Brown. Buffer Overflow. a very common attack mechanism. first wide use by the Morris Worm in 1988. prevention techniques known. still of major concern. legacy of buggy code in widely deployed operating systems and . Secure . Programming:. Buffer Overflow. Dr. Shahriar . Bijani. Shahed. University. Fall 2016. Slides’ . References. Avinash. . Kak. , . Buffer Overflow Attack. , Computer . & Network Security, Purdue University, . 10-1/2" 27-1/226-1/2 39"19"18" 1 -1/2" 28-1/222-3/468 11-1/2" 29-1/227-1/2 47-3/4"20-1/2"16-1/2" 1 -1/2" SPECIFICATIONS without overflow with overflow to top of tub to overflow