Buffer Overruns

• Two major types.

  • Stack overruns.
  • Heap overruns.

• It is almost impossible to write a C program that does not have one.

  • BIND, sendmail, Windows NT Kernel, tcpdump, etc.

• Arbitrary code execution is relatively easy, and becoming easier as new techniques are found.

  • Recently - also for heap overruns.