Presentation is loading. Please wait.

Presentation is loading. Please wait.

Exploitation: Buffer Overflow, SQL injection, Adobe files Source:

Published byEugene Chandler Modified over 8 years ago

Similar presentations

Presentation on theme: "Exploitation: Buffer Overflow, SQL injection, Adobe files Source:"— Presentation transcript:

1 Exploitation: Buffer Overflow, SQL injection, Adobe files Source: http://xkcd.com/327/http://xkcd.com/327/

2 Buffer Overflows n Integer Overflow Vulnerabilities – insufficient input validation, not a buffer overflow – errors in integer operations may cause the integer to overflowinteger to overflow – may represent the size of a packet or length of a stringsize of a packet or length of a string – exploits take advantage of integer overflow indirectly indirectly – a few actual examples.examples. n Stack-based Buffer Overflows – Buffer overflows are the result of a buffer receiving data that are larger than the allocate space. Buffer overflows – Stack-based overflows are the most common because are the easiest to exploit (see the examples in the link).Stack-based overflows – Modern compilers (e.g. MS Visual C++ 2008) use a technique known as stack cookies to prevent use of invalid return addresses, but not enough. stack cookies – Data Execution Prevention (DEP) of modern processors can be used to make the stack area non executable. Data Execution Prevention

3 SQL Injection n Concept “attacks that result from failing to validate input including portions of SQL statements in a web form entry field in an attempt to pass a newly formed rogue SQL command to the database.”attacks n Description and examples – PHP manual on SQL injection with examples, see also OWASP. PHP manualOWASP – Imperva video demonstration of SQL injection Imperva video – SQL Injection Cheat Sheet: code for MySQL, MS SQL, Oracle SQL Injection Cheat Sheet: n Scanning and mitigation – Business scanners and free scan tool Business scannersscan tool – Mitigation: sanitation, PHP mysql escape function and validation. Mitigationsanitation, PHP mysql escape function validation. – References: more in validation, MS library, ASSIST, parse tree validation.more in validationMS libraryASSISTparse tree validation.

4 Adobe files (pdf) n Why pdf files are a security issue?pdf – Most if not all machines have a pdf reader (some are vulnerable) – Attackers use pdf files to deliver malicious code because: users download them, and so do, automatically. browsers. – Malicious pdf files contain JavaScript, but some execute code even without JavaScript. n The pdf file structure: objects with text, streams, etc – Graphical representations: overview, Stevens, Parker, details.overviewStevensParker, details. – To run a JavaScript use <</Type/Action …. JS <</Open/Action << JS … Example of non-malicious use of JavaScript in pdf files.JavaScript Example – Stevens tools to parse and create JavaScript in a pdf file.tools to parse and create n Mitigating and/or reducing the risks of malicious pdf files – Disable JavaScript in the pdf reader, make browser open pdf files in the pdf reader. – Use Stevens tool to check for JavaScript in files you mistrust.

Download ppt "Exploitation: Buffer Overflow, SQL injection, Adobe files Source:"

Similar presentations

Module XIV SQL Injection

Module XIV SQL Injection
© 2008 Security Compass inc. 1 Firefox Plug-ins for Application Penetration Testing Exploit-Me.

© 2008 Security Compass inc. 1 Firefox Plug-ins for Application Penetration Testing Exploit-Me.
Network Security Attack Analysis. cs490ns - cotter2 Outline Types of Attacks Vulnerabilities Exploited Network Attack Phases Attack Detection Tools.

Network Security Attack Analysis. cs490ns - cotter2 Outline Types of Attacks Vulnerabilities Exploited Network Attack Phases Attack Detection Tools.
Creating Stronger, Safer, Web Facing Code JPL IT Security Mary Rivera June 17, 2011.

Creating Stronger, Safer, Web Facing Code JPL IT Security Mary Rivera June 17, 2011.
CMSC 414 Computer and Network Security Lecture 22 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 22 Jonathan Katz.
Breno de MedeirosFlorida State University Fall 2005 Buffer overflow and stack smashing attacks Principles of application software security.

Breno de MedeirosFlorida State University Fall 2005 Buffer overflow and stack smashing attacks Principles of application software security.
1 CHAPTER 8 BUFFER OVERFLOW. 2 Introduction One of the more advanced attack techniques is the buffer overflow attack Buffer Overflows occurs when software.

1 CHAPTER 8 BUFFER OVERFLOW. 2 Introduction One of the more advanced attack techniques is the buffer overflow attack Buffer Overflows occurs when software.
Introduction The concept of “SQL Injection”

Introduction The concept of “SQL Injection”
Stack-Based Buffer Overflows Attacker – Can take over a system remotely across a network. local malicious users – To elevate their privileges and gain.

Stack-Based Buffer Overflows Attacker – Can take over a system remotely across a network. local malicious users – To elevate their privileges and gain.
By Brian Vees.  SQL Injection  Username Enumeration  Cross Site Scripting (XSS)  Remote Code Execution  String Formatting Vulnerabilities.

By Brian Vees.  SQL Injection  Username Enumeration  Cross Site Scripting (XSS)  Remote Code Execution  String Formatting Vulnerabilities.
Information Networking Security and Assurance Lab National Chung Cheng University 1 Top Vulnerabilities in Web Applications (I) Unvalidated Input:  Information.

Information Networking Security and Assurance Lab National Chung Cheng University 1 Top Vulnerabilities in Web Applications (I) Unvalidated Input:  Information.
SQL Injection and Buffer overflow

SQL Injection and Buffer overflow
University of Washington CSE 351 : The Hardware/Software Interface Section 5 Structs as parameters, buffer overflows, and lab 3.

University of Washington CSE 351 : The Hardware/Software Interface Section 5 Structs as parameters, buffer overflows, and lab 3.
CS252: Systems Programming Ninghui Li Final Exam Review.

CS252: Systems Programming Ninghui Li Final Exam Review.
Analysis of SQL injection prevention using a proxy server By: David Rowe Supervisor: Barry Irwin.

Analysis of SQL injection prevention using a proxy server By: David Rowe Supervisor: Barry Irwin.
CSCI 6962: Server-side Design and Programming Secure Web Programming.

CSCI 6962: Server-side Design and Programming Secure Web Programming.
Lecture 14 – Web Security SFDV3011 – Advanced Web Development 1.

Lecture 14 – Web Security SFDV3011 – Advanced Web Development 1.
Web Application Access to Databases. Logistics Test 2: May 1 st (24 hours) Extra office hours: Friday 2:30 – 4:00 pm Tuesday May 5 th – you can review.

Web Application Access to Databases. Logistics Test 2: May 1 st (24 hours) Extra office hours: Friday 2:30 – 4:00 pm Tuesday May 5 th – you can review.
Chapter 1 Introduction Dr. Frank Lee. 1.1 Why Study Compiler? To write more efficient code in a high-level language To provide solid foundation in parsing.

Chapter 1 Introduction Dr. Frank Lee. 1.1 Why Study Compiler? To write more efficient code in a high-level language To provide solid foundation in parsing.
Computer Security and Penetration Testing

Computer Security and Penetration Testing

Similar presentations

Ads by Google