Question
void testFunc ( int a, double b) { char buf [10]; // line 1 int v1=0; // line 2 gets(buf); // line 3 printf(buf); //
void testFunc ( int a, double b) {
char buf [10]; // line 1
int v1=0; // line 2
gets(buf); // line 3
printf(buf); // line 4
}
a) what is the name of this vulnerability?
b) in which line does it have the vulnerability?
c) what are the two goals of an attacker for exploiting the vulnerability?
d) Assume that both the size of return address and base pointer are two bytes. Give example of an attack input that will overwrite the return address and store attackers code onto the stack. show the stack frame after the overwrite is done.
e) what are the three challenges for the attacker? how the first two challenges are addressed?
Step by Step Solution
There are 3 Steps involved in it
Step: 1
Get Instant Access to Expert-Tailored Solutions
See step-by-step solutions with expert insights and AI powered tools for academic success
Step: 2
Step: 3
Ace Your Homework with AI
Get the answers you need in no time with our AI-driven, step-by-step assistance
Get Started
Database And Expert Systems Applications Dexa 2021 Workshops Biokdd Iwcfs Mlkgraphs Al Cares Protime Alsys 2021 Virtual Event September 27 30 2021 Proceedings
Authors: Gabriele Kotsis ,A Min Tjoa ,Ismail Khalil ,Bernhard Moser ,Atif Mashkoor ,Johannes Sametinger ,Anna Fensel ,Jorge Martinez-Gil ,Lukas Fischer
1st Edition
3030871002, 978-3030871000
