LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Security (http://www.linuxquestions.org/questions/linux-security-4/)
-   -   What is a buffer overflow (http://www.linuxquestions.org/questions/linux-security-4/what-is-a-buffer-overflow-204210/)

Joey.Dale 07-12-2004 03:53 PM

What is a buffer overflow
 
Hi all,

This may seem dumb, but what is a buffer overflow, I know that it can allow unauthorized shell access but what is it?

-Joey

XavierP 07-12-2004 03:55 PM

http://www.linuxjournal.com/article.php?sid=6701 - a good, short explanation.

Joey.Dale 07-12-2004 04:05 PM

thank you

-Joey

Ztyx 07-12-2004 04:30 PM

A buffer overflow is when a program receives an input of some kind (ie. thrue internet, console etc.) that it is not expecting and can't handle. For example if I make a program which is expecting you to write 5 characters into the program, but instead writes 5000 chars my program might not handle it corretly so it perhaps continue to write the characters into memory on places it shouldn't touch (where, very simplified, another program might have its settings).

A simple search at google gave me this page. It's more info than I would have felt to write tonight =)
http://www.linuxjournal.com/article.php?sid=6701

320mb 07-12-2004 05:12 PM

do a google for an article called...........
"smashing the stack for fun and profit"


All times are GMT -5. The time now is 02:01 PM.