HomeCalendarCertificationsColumnsFeaturesForumResourcesVitals
 
Image
 
linkedin_logo.png rss_logo.jpg
twitter_logo.png youtube_logo.jpg
Latest Additions
 
EH-Net Login
Welcome Guest.
Lost Password?
No account yet? Register
Who's Online
We have 53 guests and 2 members online
EH-Net Donations

Enter Amount:
$
EH-Net News Feeds
Latest Additions
Google Ads
Book Recommendations



 
Advertisement

You are here: Home arrow Forum arrow Ethical Hacking Discussions and Related Certificationsarrow Network Pen Testingarrow CEH - Certified Ethical Hackerarrow CEH - Official Course Modules v4arrow CEH Study Group -- Module 20: Buffer Overflows
EH-Net
March 11, 2010, 06:42:59 PM *
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
News: Advertise on EH-Net!! - Reasonable Rates, Highly Targeted Audience.
 
   Home   Help Calendar Login Register  
Pages: [1]   Go Down
« previous next »
  Print  
Author Topic: CEH Study Group -- Module 20: Buffer Overflows  (Read 4542 times)
0 Members and 1 Guest are viewing this topic.
Oyle
Moderator
Sr. Member
*****
Offline Offline

Posts: 264


"Man. Nature. Technology".


View Profile WWW
« on: April 05, 2006, 04:49:17 PM »
Module Objectives:

*What is a Buffer Overflow?
*Exploitation
*How to detect buffer overflows in a program?
*Skills Required
*CPU/OS Dependency
*Understanding Stacks
*Stack based Buffer Oveflows
*Technical details
*Writing your own exploits
*Defense Against Buffer Overflows


Note: This material WILL be on the Exam....
Logged
MCP, MCP+I, MCSA, MCSE(NT4/W2K), CCNA, CCA, NWCCC, VH-PIRTS, CEH
--------------------
"hackers are like jedi, crackers are like the sith: do not fall prey to the dark side".

From 1337 h4x0r h4ndb00k: "the ten laws of geek", law x
                  -Tapeworm
Oyle
Moderator
Sr. Member
*****
Offline Offline

Posts: 264


"Man. Nature. Technology".


View Profile WWW
« Reply #1 on: May 24, 2006, 08:00:37 PM »
On Oct. 19, 2000, hundreds of flights were grounded or delayed because of a software problem in the Los Angeles air traffic control system. The cause was attributed to a Mexican controller typing a 9 (instead of 5) characters of flight-indentification data, resulting in a buffer overflow.

Really pretty cool when you think about it.   Cool Cool

Lesson interuppted, sorry; continues below..
« Last Edit: May 25, 2006, 03:09:09 PM by Oyle » Logged
MCP, MCP+I, MCSA, MCSE(NT4/W2K), CCNA, CCA, NWCCC, VH-PIRTS, CEH
--------------------
"hackers are like jedi, crackers are like the sith: do not fall prey to the dark side".

From 1337 h4x0r h4ndb00k: "the ten laws of geek", law x
                  -Tapeworm
Dengar13
Moderator
Sr. Member
*****
Offline Offline

Posts: 288



View Profile
« Reply #2 on: May 24, 2006, 08:06:01 PM »
I would hate to be the one when the $%it rolled down hill over one keystroke error!   Angry
Logged
A+, Net+, MCP, CEH
MCSE: Security/Messaging
MCSA: Security/Messaging
Former U.S. Marine and damn proud of it!
Oyle
Moderator
Sr. Member
*****
Offline Offline

Posts: 264


"Man. Nature. Technology".


View Profile WWW
« Reply #3 on: May 25, 2006, 08:22:57 AM »
Yeah, good thing the FAA doesn't have jurisdiction over Mexico, hunh? Of course, we don't know if that Mexican controller was working in an American control tower or not....

Meant to post more in that post, but didn't have time for it. I'll get to it later....

 
Logged
MCP, MCP+I, MCSA, MCSE(NT4/W2K), CCNA, CCA, NWCCC, VH-PIRTS, CEH
--------------------
"hackers are like jedi, crackers are like the sith: do not fall prey to the dark side".

From 1337 h4x0r h4ndb00k: "the ten laws of geek", law x
                  -Tapeworm
Oyle
Moderator
Sr. Member
*****
Offline Offline

Posts: 264


"Man. Nature. Technology".


View Profile WWW
« Reply #4 on: May 25, 2006, 03:10:38 PM »
Lesson continues from above....

Buffer Overflow vulnerabilities infest the IT (Information Technology duh...) Grin environment more often than other vulnerabilites because it has little to do with security, inherently; the vulnerabilites occur mainly because of human error, which is difficult to detect, and not often anticipated in the first place.

Here's an example: Suppose you want to tell a co-worker something important. When you finally get the opportunity, you "zone out", and forget wehat it is you wanted to tell him/her. Maybe you were distracted by a previous conversation with someone else. This is a simple form of a Buffer Overflow. You wanted to relay a message, which would have formed the basis for future decisions. But a disruption in your planned series of events prevented it from occuring. See the connection???
 
Significance of Buffer Overflow Vulnerability....

Reference the above example of the Mexican air controller.... In the field of IT, such behaviour can result in serious trouble, as in the case of the Mexican air controller.

A buffer overflow occurs when a program or process tries to store more data in a buffer (a temporary storage area in RAM) than it was intended to hold. Buffers are created to hold a finite amount of data, so the extra information has to be moved elsewhere, and can overflow into adjacent buffers, corrupting or overwriting the valid data held in them. 

Consider the following snippet of C++ code:

#include <stdio.h>
int main ( )
[
char name[31];
printf ( Please type your name:   ");
gets(name);
printf("Hello,   %s",    name);
return D;
]

A Buffer Overflow will occur if you enter:
'AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA'
« Last Edit: May 25, 2006, 03:32:06 PM by Oyle » Logged
MCP, MCP+I, MCSA, MCSE(NT4/W2K), CCNA, CCA, NWCCC, VH-PIRTS, CEH
--------------------
"hackers are like jedi, crackers are like the sith: do not fall prey to the dark side".

From 1337 h4x0r h4ndb00k: "the ten laws of geek", law x
                  -Tapeworm
Pages: [1]   Go Up
  Print  
« previous next »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.11 | SMF © 2006-2009, Simple Machines LLC
Joomla Bridge by JoomlaHacks.com 		Valid XHTML 1.0! Valid CSS!
Page created in 0.057 seconds with 26 queries.
 
Polls
Best Career Move in 2010:
 
Support EH-Net

eh-net_amazonstore.jpg
Help Support EH-Net with Our Amazon Store

cbtnuggets_logo_125.jpg
Try CBT Nuggets Free!
Recent Forum Topics
Vote For EH-Net

progenic.com
Click here to Vote!

Add to Technorati Favorites
technorati fave

 
         
Advertisement

© 2010 The Ethical Hacker Network
Joomla! is Free Software released under the GNU/GPL License.