Buffer overflow

In computers and computer security, a buffer overflow occurs when more data than was expected is written to a memory buffer than was intended by a programmer.

This error is the most common type of Computer security flaw that is used to run code on a remote machine unintentionally.

Other names for this attack include "buffer overrun" and "Smashing the Stack," both of which describe the concept.^[1]

Technical Explanation

A software execution stack exists in many modern kernels, much like a stack of books. Parts of the stack are marked as data, and other parts are marked as being executable. By unexpectedly overwriting the parts of the stack marked executable with data, exploit code is executed in place of the regular flow of the program. This can achieve unexpected results, ranging anywhere from the program running crashing, the entire operating system crashing, or the code actually being executed. This simple concept has had profound implications in the annals of computer security.

External Links

"Smashing the Stack for Fun and Profit" This article is a bit dated, but it covers in great technical detail this flaw

References

↑ "Smashing the Stack for Fun and Profit by Aleph One".

[Smashing_the_Stack-1] "Smashing the Stack for Fun and Profit by Aleph One".

[1]

Buffer overflow

Contents

Technical Explanation

See Also

External Links

References

Navigation menu

Buffer overflow

Technical Explanation

See Also

External Links

References

Navigation menu

Search