New Reply 
Buffer overflow attack : A potential problem and its Implications
computer science crazy
Guest
 
#1
08-04-2009, 10:42 AM

Definition

Have you ever thought of a buffer overflow attack ? It occurs through careless programming and due to patchy nature of the programs. Many C programs have buffer overflow vulnerabilities because the C language lacks array bounds checking, and the culture of C programmers encourages a performance-oriented style that avoids error checking where possible. Eg: gets and strcpy ( no bounds checking ). This paper presents a systematic solution to the persistent problem of buffer overflow attacks. Buffer overflow attack gained notoriety in 1988 as part of the Morris Worm
incident on the Internet. These problems are probably the result of careless programming, and could be corrected
by elementary testing or code reviews along the way.

THE ATTACK :- A (malicious) user finds the vulnerability in a highly privileged program and someone else implements a patch to that particular attack, on that privileged program. Fixes to buffer overflow attacks attempt to solve the problem at the source (the vulnerable program) instead of at the destination (the stack that is being overflowed).

StackGuard :- It is a simple compiler extension that limits the amount of damage that a buffer overflow attack can inflict on a program. The paper discusses the various intricacies to the problem and the implementation details of the Compiler extension 'Stack Guard '.

Stack Smashing Attack :- Buffer overflow attacks exploit a lack of bounds checking on the size of input being stored in a buffer array. The most common data structure to corrupt in this fashion is the stack, called a ``stack smashing attack'' .

StackGuard For Network Access :- The paper also discusses the impacts on network access to the 'Buffer Overflow Attack'.

StackGuard prevents changes to active return addresses by either :-
1. Detecting the change of the return address before the function returns, or
2. Completely preventing the write to the return address. MemGuard is a tool developed
to help debug optimistic specializations by locating code statements that change quasi-invariant
values.

STACKGUARD OVERHEAD
" Canary StackGuard Overhead
" MemGuard StackGuard Overhead
" StackGuard Macrobenchmarks

The paper presents the issues and their implications on the 'IT APPLICATIONS' and discusses the solutions through implementation details of 'Stack Guard'.
Reply
New Reply 

Important Note..!

If you are not satisfied with above reply ,..Please

ASK HERE

So that we will collect data for you and will made reply to the request....OR try below "QUICK REPLY" box to add a reply to this page
Popular Searches: chemistry of problem soil, potential resources, powered by article dashboard implications of37ac45ff2aacd0e23d6cde95ae983b97, sigfree online buffer overflow ppt, heart problem symptoms, buffer amplifier, tata safari dicor electrical problem,

[-]
Quick Reply
Message
Type your reply to this message here.
Image Verification
Please enter the text contained within the image into the text box below it. This process is used to prevent automated spam bots.
Image Verification
(case insensitive)

Possibly Related Threads...
Thread Author Replies Views Last Post
  Particle Swarm Optimization Algorithm and Its Application in Engineering Design Optim computer science crazy 3 5,490 03-05-2013, 10:28 AM
Last Post: computer topic
  Buffer management strategies to reduce HoL blocking summer project pal 2 2,012 12-03-2013, 04:12 PM
Last Post: Guest
  SLEEP SERVER & ITS ENTERPRISE APPLICATION seminar surveyer 5 2,900 03-12-2012, 11:25 PM
Last Post: Guest
  A survey of usage of Data Mining and Data Warehousing in Academic Institution and Lib seminar class 1 2,125 29-11-2012, 12:56 PM
Last Post: seminar details
  Intelligent Electronic Devices (IEDs) and Supervisory Control and Data Acquisition computer girl 0 1,148 09-06-2012, 06:01 PM
Last Post: computer girl
  The 8051 Microcontroller and Embedded Systems Using Assembly and C computer girl 0 1,045 04-06-2012, 05:41 PM
Last Post: computer girl
  CELLULAR VIRUS ATTACK full report project topics 3 4,807 09-02-2012, 10:24 AM
Last Post: seminar addict
  Monitoring the Application Layer-DDoS Attack for Popular Websites full report project topics 12 11,285 26-01-2012, 10:17 AM
Last Post: seminar addict
  BAR CODE TECHNOLOGY AND ITS APPLICATIONS seminar class 2 2,597 19-01-2012, 10:41 AM
Last Post: seminar addict
  Signature-free Buffer Overflow Attack Blocker project report helper 8 5,389 22-08-2011, 09:24 AM
Last Post: seminar addict

Forum Jump:

Contact Us | Student Seminar Report & Project Report With Presentation (PPT,PDF,DOC,ZIP) | Return to Top | Lite (Archive) Mode | RSS Syndication