Academic Integrity: tutoring, explanations, and feedback — we don’t complete graded work or submit on a student’s behalf.

9 (iSpts) Answer the following: (a) Explain what a bufer overflow attack is. [7

ID: 3575975 • Letter: 9

Question


9 (iSpts) Answer the following: (a) Explain what a bufer overflow attack is. [7 points) The following code sets user pouswords on a machine. Examine the code. If this code is vulnerable to buffer overflow attacks, state the vulnerability with possible attack scenario. Also, if this cod de is vulnerable to the overflow attack, show how you will remove this vulnerability. B points] char nare [20] char password [8] struct user List{ int num Users bool settlaerPassword (char .userNane, char userPassword. struct user nevUser stropy (be User.nane strcpy (ne User password userPaasword) if (list- nun0fUsers 1 >a MAI NUM USERS) print ("USER LIST IS FULLVn") return (false) upda te uaer list list nunofUsers 1 list users [list- nurofUsers] nevlaer

Explanation / Answer

Buffer Overflow Attack:

A Buffer Overflow Attack is an attack that abuses a type of bug called a “buffer overflow”, in which a program overwrites memory adjacent to a buffer that should not have been modified intentionally or unintentionally. Buffer overflows are commonly associated with C-based languages, which do not perform any kind of array bounds checking.

As a result, operations such as copying a string from one buffer to another can result in the memory adjacent to the new (shorter) buffer to be overwritten with excess data.

When a buffer overflow occurs in a program, it will often crash or become unstable. An attacker attempting to abuse a buffer overflow for a more specific purpose other than crashing the target system, can purposely overwrite important values in the call stack of the target machine such as the instruction pointer (IP) or base pointer (BP) in order to execute his or her potentially malicious unsigned code.

Operating system and software vendors often employ countermeasures in their products to prevent Buffer Overflow Attacks; particularly call stack and virtual memory randomization.

(b.) in the following code line i.e. strcpy(newUser.name,userName) and strcpy(newUser.password,userPassword). The call to strcpy is the one that is dangerous. strcpy will just copy character for character until it finds a "0" character in the source string.

Since the argument we give to the call can be much longer, this can mess up the stack.

When the stack is messed up, the return address from setUserPassword will be overwritten. With other words, instead of going back to the next instruction after setUserPassword in main, the next instruction executed after setUserPassword finishes will be whatever is in the stack location.

Related Questions

9 & 10 please Statistice Insert Design Layout References Mailings Review View Ti
Question #3324008
9 ( 10%) Indicate whether h statment is truc or false a. Can function templates
Question #3907095
9 ( 10%) Indicate whether h statment is truc or false a. Can function templates
Question #3907116
9 (3 points) An experiment to observe chemical equilibrium was carried out using
Question #1007421
9 (Mishkin 18.2) During the holiday season, when the public\'s holdings of curre
Question #1105299
9 (Related to Checkpoint 6.2) (Present value of annuity payments) The state lott
Question #2794961
9 (of 10) value: 1000 points Based on the table below, calculate nominal GDP, re
Question #1146623
9 )Fastest Company’s common shares are currently trading for $30. It is expected
Question #2773740
Hire Me For All Your Tutoring Needs
Integrity-first tutoring: clear explanations, guidance, and feedback.
Drop an Email at drjack9650@gmail.com
Chat Now And Get Quote

Navigate

Previous
9 (Related to Checkpoint 6.2) (Present value of annuity payments) The state lott
Next
9 (of 10) value: 1000 points Based on the table below, calculate nominal GDP, re

Integrity-first tutoring: explanations and feedback only — we do not complete graded work. Learn more.