Add to collection(s) Add to saved
  1. No category

slides

advertisement 
Simple Buffer
Overflow Example
Dan Fleck
CS469 Security Engineering
Reference: http://www.thegeekstuff.com/2013/06/buffer-overflow/
1
Coming up: Buffer Overflows
Buffer Overflows
• Buffer overflows occur when some sized portion of memory is
overwritten with something bigger.
• For example:
• char buff[10]; // Min index is 0, max index is ????
• Overflow:
• buff[10] =‘d’;
2
Coming up: Why care?
Why care?
• Minimally buffer overflows can cause program crashes or
unexpected results
• char *ptr = (char *) malloc (10); // Allocate 10 bytes on heap
ptr[10] = ‘d’ ; // Crash!
• However because buffer overflows corrupt memory nearby
the variable being over-filled, an informed hacker can use this
to write data into other protected areas of the program (i.e.
stack and heap)
• char buff[10] = {0};
strcpy(buff, “Lets overflow that buffer!”); // Stack overflow!
Coming up: An attack
3
An attack
int main(void) {
char buff[15];
int pass = 0;
printf("\n Enter the password : \n");
gets(buff); // Get the password from the user
if(strcmp(buff, "thegeekstuff")) { // Check the password
printf ("\n Wrong Password \n");
} else {
printf ("\n Correct Password \n");
pass = 1; // Set a flag denoting correct pass
}
if(pass) { /* Now Give root or admin rights to user*/
printf ("\n Root privileges given to the user \n");
}
return 0;
}
Coming up: Lets look inside…
4
Lets test it!
Lets look inside…
• GDB is a common debugger for C programs.
• gcc –g myFile.c // -g option enables debug symbols and thus
debugging
• DDD is a graphical front-end to GDB. Typically GDB is used
from a command line interface
5
Coming up: Lessons
Lessons
• Buffer overflows occur when memory bounds of a variable
are exceeded
• They can occur on the heap or the stack
• Buffer overflows have unintended consequences.
• There are protections against unsafe operations however
they may not always be used (or known)
35
6
Coming up: References
References
• http://blog.zynamics.com/2010/03/12/a-gentle-introductionto-return-oriented-programming/
• http://cseweb.ucsd.edu/~hovav/dist/geometry.pdf
• Stealth: http://www.suse.de/~krahmer/no-nx.pdf
• Nergel,
http://www.phrack.com/issues.html?issue=58&id=4#article
• http://cseweb.ucsd.edu/~hovav/dist/rop.pdf
36
7
End of presentation
Related documents
Buffer Overflow Slides
Buffer Overflow Slides
H.264 Rate Control
H.264 Rate Control
Messages
Messages
Honors Chem- Buffers Worksheet
Honors Chem- Buffers Worksheet
Final Exam - Topic Outline
Final Exam - Topic Outline
Labs and Exercises using the Buffer Overflow Module materials
Labs and Exercises using the Buffer Overflow Module materials
2008-2011 - Online MMCE
2008-2011 - Online MMCE
Chapter 19 SI Sunday Tuesday Wednesday 7:30
Chapter 19 SI Sunday Tuesday Wednesday 7:30
Wednesday Quiz 6 answers Chem 265 2012
Wednesday Quiz 6 answers Chem 265 2012
Smashing the Stack for Fun and Profit
Smashing the Stack for Fun and Profit
Buffer Overflow
Buffer Overflow
seminar
seminar
The Psychology of Risk
The Psychology of Risk
DETECTING BUFFER OVERFLOWS USING TESTCASE SYNTHESIS AND CODE INSTRUMENTATION MICHAEL A. ZHIVICH
DETECTING BUFFER OVERFLOWS USING TESTCASE SYNTHESIS AND CODE INSTRUMENTATION MICHAEL A. ZHIVICH
Download
advertisement