03511nam a2200385Ii 4500991003260139707536m d cr cn|||||||||070806s2005 maua s 001 0 eng d97819322666721932266674b13656739-39ule_inst109810:109858Elsevier Science & Technologyhttp://www.sciencedirect.comOPELSOPELSTEFA005.822Buffer overflow attacks[electronic resource] :detect, exploit, prevent /James C. Foster ... [et al.] ; foreword by Dave Aitel.Rockland, MA :Syngress,c2005.xxii, 497 p. :ill. ;23 cm.Includes index.Buffers and overflows ; Stack segment ; Attacks on the stack ; Attacks on the heap ; Discovering vulnerabilities ; Crafting a payload ; Attack delivery ; Real world examples ; Trapping attacks ; Preventing attacks ; Defense in depth.The SANS Institute maintains a list of the "Top 10 Software Vulnerabilities." At the current time, over half of these vulnerabilities are exploitable by Buffer Overflow attacks, making this class of attack one of the most common and most dangerous weapon used by malicious attackers. This is the first book specifically aimed at detecting, exploiting, and preventing the most common and dangerous attacks. Buffer overflows make up one of the largest collections of vulnerabilities in existence; And a large percentage of possible remote exploits are of the overflow variety. Almost all of the most devastating computer attacks to hit the Internet in recent years including SQL Slammer, Blaster, and I Love You attacks. If executed properly, an overflow vulnerability will allow an attacker to run arbitrary code on the victims machine with the equivalent rights of whichever process was overflowed. This is often used to provide a remote shell onto the victim machine, which can be used for further exploitation. A buffer overflow is an unexpected behavior that exists in certain programming languages. This book provides specific, real code examples on exploiting buffer overflow attacks from a hacker's perspective and defending against these attacks for the software developer. *Over half of the "SANS TOP 10 Software Vulnerabilities" are related to buffer overflows. *None of the current-best selling software security books focus exclusively on buffer overflows. *This book provides specific, real code examples on exploiting buffer overflow attacks from a hacker's perspective and defending against these attacks for the software developer.Electronic reproduction.Amsterdam :Elsevier Science & Technology,2007.Mode of access: World Wide Web.System requirements: Web browser.Title from title screen (viewed on Aug. 2, 2007).Access may be restricted to users at subscribing institutions.Computer security.Computer viruses.Electronic books.localFoster, James C.Original19322666749781932266672(OCoLC)57571834Referexhttp://www.sciencedirect.com/science/book/9781932266672An electronic book accessible through the World Wide Web; click for information.b1365673924-02-2224-01-08991003260139707536C0TEFBuffer overflow attacks1526601UNISALENTOle02924-01-08mm -engmau00