Add to collection(s) Add to saved
  1. No category

slides

advertisement 
Simple Buffer
Overflow Example
Dan Fleck
CS469 Security Engineering
Reference: http://www.thegeekstuff.com/2013/06/buffer-overflow/
1
Coming up: Buffer Overflows
Buffer Overflows
• Buffer overflows occur when some sized portion of memory is
overwritten with something bigger.
• For example:
• char buff[10]; // Min index is 0, max index is ????
• Overflow:
• buff[10] =‘d’;
2
Coming up: Why care?
Why care?
• Minimally buffer overflows can cause program crashes or
unexpected results
• char *ptr = (char *) malloc (10); // Allocate 10 bytes on heap
ptr[10] = ‘d’ ; // Crash!
• However because buffer overflows corrupt memory nearby
the variable being over-filled, an informed hacker can use this
to write data into other protected areas of the program (i.e.
stack and heap)
• char buff[10] = {0};
strcpy(buff, “Lets overflow that buffer!”); // Stack overflow!
Coming up: An attack
3
An attack
int main(void) {
char buff[15];
int pass = 0;
printf("\n Enter the password : \n");
gets(buff); // Get the password from the user
if(strcmp(buff, "thegeekstuff")) { // Check the password
printf ("\n Wrong Password \n");
} else {
printf ("\n Correct Password \n");
pass = 1; // Set a flag denoting correct pass
}
if(pass) { /* Now Give root or admin rights to user*/
printf ("\n Root privileges given to the user \n");
}
return 0;
}
Coming up: Lets look inside…
4
Lets test it!
Lets look inside…
• GDB is a common debugger for C programs.
• gcc –g myFile.c // -g option enables debug symbols and thus
debugging
• DDD is a graphical front-end to GDB. Typically GDB is used
from a command line interface
5
Coming up: Lessons
Lessons
• Buffer overflows occur when memory bounds of a variable
are exceeded
• They can occur on the heap or the stack
• Buffer overflows have unintended consequences.
• There are protections against unsafe operations however
they may not always be used (or known)
35
6
Coming up: References
References
• http://blog.zynamics.com/2010/03/12/a-gentle-introductionto-return-oriented-programming/
• http://cseweb.ucsd.edu/~hovav/dist/geometry.pdf
• Stealth: http://www.suse.de/~krahmer/no-nx.pdf
• Nergel,
http://www.phrack.com/issues.html?issue=58&id=4#article
• http://cseweb.ucsd.edu/~hovav/dist/rop.pdf
36
7
End of presentation
Related documents
Buffer Overflow Slides
Buffer Overflow Slides
H.264 Rate Control
H.264 Rate Control
Messages
Messages
Honors Chem- Buffers Worksheet
Honors Chem- Buffers Worksheet
Final Exam - Topic Outline
Final Exam - Topic Outline
Labs and Exercises using the Buffer Overflow Module materials
Labs and Exercises using the Buffer Overflow Module materials
2008-2011 - Online MMCE
2008-2011 - Online MMCE
Chapter 19 SI Sunday Tuesday Wednesday 7:30
Chapter 19 SI Sunday Tuesday Wednesday 7:30
Wednesday Quiz 6 answers Chem 265 2012
Wednesday Quiz 6 answers Chem 265 2012
Smashing the Stack for Fun and Profit
Smashing the Stack for Fun and Profit
Buffer Overflow
Buffer Overflow
seminar
seminar
Download
advertisement