Monday, March 15, 2010
Buffer overflows are a favorite exploit for hackers. The vast majority of Microsoft's available patches fix unchecked buffer problems. A buffer overflow is an exploit that takes advantage of a program that is waiting on a user's input. There are two main types of buffer overflow attacks, stack based and heap based.
Heap-based attacks flood the memory space reserved for a program, but the difficulty involved with performing such an attack is mostly rare.
Stack-based attack involves with the size previously assigned while coding, the programmer one who develops the code must reserve a specific amount of space for the stack. If the user's input is longer than the amount of space reserved for it within the stack, then the stack will overflow.