Buffer Overflow

0.0(0)
learnLearn
examPractice Test
spaced repetitionSpaced Repetition
heart puzzleMatch
flashcardsFlashcards
Card Sorting

1/13

encourage image

There's no tags or description

Looks like no tags are added yet.

Study Analytics
Name
Mastery
Learn
Test
Matching
Spaced

No study sessions yet.

14 Terms

1
New cards

static data

use by the user progam is stored int he global data segnment

2
New cards

dynamic data

by the user program is stored in the heap

3
New cards

stack

used by the user program to store temporary data during subroutine calls

4
New cards

kernel segment

stores kernel level code and static data

5
New cards

frame

chunk of data for a given function

6
New cards

stack oprations

push and pop

7
New cards

ebp

start of the current frame

8
New cards

esp

end of the current frame

9
New cards

eip

next instruction

10
New cards

hacker process

study the target system

find a place to put attack code

overflow - change the flow of execution

11
New cards

guessing

() where the shellcode is can be time consuming and can lead to a segmentation fault ir invalid instruction even if you are wrong by 1 byte

12
New cards

padding

() shellcode with NOP’s and then guessing doesnt require knowing the exact byte and is much more efficient

13
New cards

environment variable

you can squeeze shellcode into smaller buffers by storing the shellcode in an () then overflow the buffer with the address of this variable in memory

14
New cards

Smashing the stack

() works by injecting code into a program using a buffer overflow, and getting the program to jump to that code