Presentation is loading. Please wait.

Presentation is loading. Please wait.

Buffer Overflow Slide Set #7 Textbook Chapter 10 Clicker Questions

Published byJoella Cameron Modified over 5 years ago

Similar presentations

Presentation on theme: "Buffer Overflow Slide Set #7 Textbook Chapter 10 Clicker Questions"— Presentation transcript:

1 Buffer Overflow Slide Set #7 Textbook Chapter 10 Clicker Questions
                    Peer Instruction Questions for Intro to Computer Security by William E. Johnson, Allison Luzader, Irfan Ahmed is licensed under a Creative Commons Attribution-NonCommercial 4.0 International License.

2 Prevention techniques for buffer overflow are known
Prevention techniques for buffer overflow are known. Why is buffer overflow still a concern? Prevention techniques are incredibly difficult to implement Legacy code contains buffer overflow vulnerabilities Poor programming practices None/Other/More than one of the above Correct Answer = D (both B & C are correct) Source: Computer Security Principles and Practice, Third Edition, page 241 & 265 Question Triggers: ”Identify a set" because of the option in choice D ”None of the above" because of the option in choice D “Qualitative questions” because this question is qualitative—students must examine the definition as well as the reason for continuing propagation of this vulnerability Total Count: 3 Count without none of the above: 2 Count without identify a set: 2 Count without none of the above or identify a set: 1 Complexity: Simple Presentation: Example

3 What is the significance of the Morris Worm?
Exploited a buffer overflow vulnerability in SQL server First widely used buffer overflow attack Used buffer overflow attack as its attack mechanism None/Other/More than one of the above Correct Answer = D (both B & C are correct) Source: Computer Security Principles and Practice, Third Edition, page 241 & 265 Question Triggers: ”Identify a set" because of the option in choice D ”None of the above" because of the option in choice D “Qualitative questions” because this question asks for understanding of a concept/idea Total Count: 3 Count without none of the above: 2 Count without identify a set: 2 Count without none of the above or identify a set: 1 Complexity: Simple (I considered composite, as it requires the understanding of buffer overflow as its means of attack, but I don’t know that understanding the concept of buffer overflows is essential to correctly answering this question) Presentation: Definitional

4 Which of the following describes a buffer overflow attack?
Exploiting the traffic flow mechanism in a buffer and blocking packets from reaching their destination. Flooding a buffer with server requests and overflowing the network bandwidth. Attempting to store more input in a data holding area than capacity allocates. None/Other/More than one of the above Correct Answer = C Source: Computer Security Principles and Practice, Third Edition, page 241 & 265 Question Triggers: ”Identify a set" because of the option in choice D ”None of the above" because of the option in choice D “Qualitative questions” as this asks for identification of features of a concept or idea Total Count: 3 Count without none of the above: 2 Count without identify a set: 2 Count without none of the above or identify a set: 1 Complexity: Simple Presentation: Definitional

5 Which of the following describes a potential consequence of a buffer overflow attack?
Data in memory might be overwritten unexpectedly. An attacker might inject malicious code causing this to run after overflowing the buffer. Network capacity might be reached by flooding the buffer. None/Other/More than one of the above Correct Answer = D (both A & B are correct) Source: Computer Security Principles and Practice, Third Edition, page 241 & 265 Question Triggers: ”Identify a set" because of the option in choice D ”None of the above" because of the option in choice D “Qualitative questions” as this is a question requiring understanding of the concept of buffer overflow as well as potential consequences Total Count: 3 Count without none of the above: 2 Count without identify a set: 2 Count without none of the above or identify a set: 1 Complexity: Simple Presentation: Feature Identification

6 Which of the following explains why modern, high-level languages are not susceptible to buffer overflow attacks? They allow direct access to memory. They are not strongly typed. They have a strong notion of valid operations. Large legacy code is written in high-level languages and thus is safe (since it’s been used for years). None/Other/More than one of the above Correct Answer = C Source: Computer Security Principles and Practice, Third Edition, page 241 & 265 Question Triggers: ”Identify a set" because of the option in choice E ”None of the above" because of the option in choice E “Qualitative questions” because this asks about concepts; not about numbers “Analysis and reasoning” as students must identify the features that prevent susceptibility “Trolling for misconceptions”; while not the best example, I think is an important feature of choice D to see if students believe high-level language code is inherently safe (it’s not, and vulns such as race conditions are certainly still very viable even when buffer overflows may not be) Total Count: 5 Count without none of the above: 4 Count without identify a set: 4 Count without none of the above or identify a set: 3 Complexity: Composite; requires understanding of basics of buffer overflows as well as the protections more frequently available in higher level languages Presentation: Feature Identification

7 Which of the following explains why C and other related languages are susceptible to buffer overflow attacks? They allow direct access to memory. They are strongly typed and have a strong notion of valid operations. They include several control structures which cause buffer overflow vulnerabilities. None/Other/More than one of the above Correct Answer = A Source: Computer Security Principles and Practice, Third Edition, page 241 & 265 Question Triggers: ”Identify a set" because of the option in choice D ”None of the above" because of the option in choice D “Qualitative questions” because this asks about concepts; not about numbers “Analysis and reasoning” as students must identify the features that indicate susceptibility Total Count: 4 Count without none of the above: 3 Count without identify a set: 3 Count without none of the above or identify a set: 2 Complexity: Composite; requires understanding of basics of buffer overflows as well as the reasons for susceptibility in lower level languages such as C Presentation: Feature Identification

Download ppt "Buffer Overflow Slide Set #7 Textbook Chapter 10 Clicker Questions"

Similar presentations

ROP is Still Dangerous: Breaking Modern Defenses Nicholas Carlini et. al University of California, Berkeley USENIX Security 2014 Presenter: Yue Li Part.

ROP is Still Dangerous: Breaking Modern Defenses Nicholas Carlini et. al University of California, Berkeley USENIX Security 2014 Presenter: Yue Li Part.
Computer Security: Principles and Practice EECS710: Information Security Professor Hossein Saiedian Fall 2014 Chapter 10: Buffer Overflow.

Computer Security: Principles and Practice EECS710: Information Security Professor Hossein Saiedian Fall 2014 Chapter 10: Buffer Overflow.
Computer Security: Principles and Practice First Edition by William Stallings and Lawrie Brown Lecture slides by Lawrie Brown Chapter 11 – Buffer Overflow.

Computer Security: Principles and Practice First Edition by William Stallings and Lawrie Brown Lecture slides by Lawrie Brown Chapter 11 – Buffer Overflow.
Lecture 16 Buffer Overflow modified from slides of Lawrie Brown.

Lecture 16 Buffer Overflow modified from slides of Lawrie Brown.
©Ian Sommerville 2004Software Engineering, 7th edition. Chapter 20 Slide 1 Critical systems development.

©Ian Sommerville 2004Software Engineering, 7th edition. Chapter 20 Slide 1 Critical systems development.
CMSC 414 Computer and Network Security Lecture 22 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 22 Jonathan Katz.
1 CHAPTER 8 BUFFER OVERFLOW. 2 Introduction One of the more advanced attack techniques is the buffer overflow attack Buffer Overflows occurs when software.

1 CHAPTER 8 BUFFER OVERFLOW. 2 Introduction One of the more advanced attack techniques is the buffer overflow attack Buffer Overflows occurs when software.
Stack-Based Buffer Overflows Attacker – Can take over a system remotely across a network. local malicious users – To elevate their privileges and gain.

Stack-Based Buffer Overflows Attacker – Can take over a system remotely across a network. local malicious users – To elevate their privileges and gain.
Information Networking Security and Assurance Lab National Chung Cheng University 1 Top Vulnerabilities in Web Applications (I) Unvalidated Input:  Information.

Information Networking Security and Assurance Lab National Chung Cheng University 1 Top Vulnerabilities in Web Applications (I) Unvalidated Input:  Information.
Security+ Guide to Network Security Fundamentals, Third Edition Chapter 9 Performing Vulnerability Assessments.

Security+ Guide to Network Security Fundamentals, Third Edition Chapter 9 Performing Vulnerability Assessments.
Lecture 16 Buffer Overflow

Lecture 16 Buffer Overflow
CMSC 414 Computer and Network Security Lecture 20 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 20 Jonathan Katz.
Intrusion Prevention System Group 6 Mu-Hsin Wei Renaud Moussounda Group 6 Mu-Hsin Wei Renaud Moussounda.

Intrusion Prevention System Group 6 Mu-Hsin Wei Renaud Moussounda Group 6 Mu-Hsin Wei Renaud Moussounda.
Computer Security: Principles and Practice First Edition by William Stallings and Lawrie Brown Lecture slides by Lawrie Brown Chapter 8 – Denial of Service.

Computer Security: Principles and Practice First Edition by William Stallings and Lawrie Brown Lecture slides by Lawrie Brown Chapter 8 – Denial of Service.
Principles of Computer Security: CompTIA Security + ® and Beyond, Third Edition © 2012 Principles of Computer Security: CompTIA Security+ ® and Beyond,

Principles of Computer Security: CompTIA Security + ® and Beyond, Third Edition © 2012 Principles of Computer Security: CompTIA Security+ ® and Beyond,
An anti-hacking guide.  Hackers are kindred of expert programmers who believe in freedom and spirit of mutual help. They are not malicious. They may.

An anti-hacking guide.  Hackers are kindred of expert programmers who believe in freedom and spirit of mutual help. They are not malicious. They may.
The Security Aspect of Social Engineering Justin Steele.

The Security Aspect of Social Engineering Justin Steele.
Intro to Architecture – Page 1 of 22CSCI 4717 – Computer Architecture CSCI 4717/5717 Computer Architecture Topic: Introduction Reading: Chapter 1.

Intro to Architecture – Page 1 of 22CSCI 4717 – Computer Architecture CSCI 4717/5717 Computer Architecture Topic: Introduction Reading: Chapter 1.
Computer Security and Penetration Testing

Computer Security and Penetration Testing
BLENDED ATTACKS EXPLOITS, VULNERABILITIES AND BUFFER-OVERFLOW TECHNIQUES IN COMPUTER VIRUSES By: Eric Chien and Peter Szor Presented by: Jesus Morales.

BLENDED ATTACKS EXPLOITS, VULNERABILITIES AND BUFFER-OVERFLOW TECHNIQUES IN COMPUTER VIRUSES By: Eric Chien and Peter Szor Presented by: Jesus Morales.

Similar presentations

Ads by Google