[REVS] A Buffer Overflow Study - Attacks & Defenses
From: support@securiteam.comDate: 09/16/02
- Previous message: support@securiteam.com: "[UNIX] FreeBSD Ports libkvm Security Vulnerabilities"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: support@securiteam.com To: list@securiteam.com Date: Mon, 16 Sep 2002 22:38:02 +0200 (CEST)
The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com
- - promotion
When was the last time you checked your server's security?
How about a monthly report?
http://www.AutomatedScanning.com - Know that you're safe.
- - - - - - - - -
A Buffer Overflow Study - Attacks & Defenses
------------------------------------------------------------------------
SUMMARY
The following article provides in detail the different method on which
exploiting of security vulnerabilities relies. The article explains what
are, and how to exploit Stack overflows and Heap overflow. This article is
a great asset to both novice and advance security professionals.
DETAILS
Introduction:
"On November 2, 1988 a new form of threat appeared with the Morris Worm,
also known as the Internet Worm. This famous event caused heavy damages on
the internet, by using two common UNIX programs, sendmail, and fingerd.
This was possible by exploiting a buffer overflow in fingerd. This is
probably one of the most outstanding attacks based on buffer overflows.
This kind of vulnerability has been found on largely spread and used
daemons such as bind, wu-ftpd, or various telnetd implementations, as well
as on applications such as Oracle or MS Outlook Express...
The variety of vulnerable programs and possible ways to exploit them make
clear that buffer overflows represent a real threat. Generally, they allow
an attacker to get a shell on a remote machine, or to obtain superuser
rights. Buffer overflows are commonly used in remote or local exploits.
The first aim of this document is to present how buffer overflows work and
may compromise a system or a network security, and to focus on some
existing protection solutions. Finally, Pierre-Alain FAYOLLE and Vincent
GLAUME will try to point out the most interesting sets to secure an
environment, and compare them on criteria such as efficiency or
performance loss.
Pierre-Alain FAYOLLE and Vincent GLAUME are both third year computer
science students at ENSEIRB (French national school of engineering),
specialized in Networks and Distributed Systems. This study has been
performed during our Network Administration project."
ADDITIONAL INFORMATION
The complete article can be accessed by going to:
<http://www.enseirb.fr/~glaume/bof/report.html>
http://www.enseirb.fr/~glaume/bof/report.html
The information has been provided by Pierre-Alain FAYOLLE and Vincent
GLAUME.
========================================
This bulletin is sent to members of the SecuriTeam mailing list.
To unsubscribe from the list, send mail with an empty subject line and body to: list-unsubscribe@securiteam.com
In order to subscribe to the mailing list, simply forward this email to: list-subscribe@securiteam.com
====================
====================
DISCLAIMER:
The information in this bulletin is provided "AS IS" without warranty of any kind.
In no event shall we be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages.
- Previous message: support@securiteam.com: "[UNIX] FreeBSD Ports libkvm Security Vulnerabilities"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
