Fu-Hau Hsu  Home/Search
Context
Related
| sunysb.edu/tr/rpe9.ps Cached: PS.gz PS PDF This document uses CoBlitz to cache paper downloads. If your firewall is blocking outgoing connections to port 3125, you can use these links to download local copies.
Image Update HelpPS.gz PS PDF From: sunysb.edu/tech_reports (more) Homepages: F.Hsu |
Rate this article:      (best)Comment on this article |
Abstract: This paper presents a solution to the notorious buffer overflow attack problem. Using this solution, users can prevent attackers from compromising their systems by changing the return address to execute injected code, which is the most common method used in buffer overflow attacks. Buffer overflow attacks can occur in almost any kind of programs and is one of the most common vulnerabilities that can seriously compromise the security of a system. Usually the end result of such an attack is that... (Update)
Similar documents (at the sentence level):
45.9%: The Principle, Attack Patterns, and Defense Methods of Buffer.. - Hsu (2000) (Correct)
Active bibliography (related documents): More All
0.6: StackGuard: Automatic Adaptive Detection and Prevention of.. - Cowan (1998) (Correct)
0.3: Libsafe: Protecting Critical Elements of Stacks - Tsai, Singh (2001) (Correct)
0.3: Transparent Run-Time Defense Against Stack Smashing Attacks - Baratloo, Singh, Tsai (2000) (Correct)
Similar documents based on text: More All
0.8: A Binary Rewriting Defense against Stack Based Overflow attacks - Prasad, Chiueh (Correct)
0.8: Architecture Support for Defending Against Buffer.. - Xu, Kalbarczyk, Patel.. (2002) (Correct)
0.5: Testing C Programs for Buffer Overflow Vulnerabilities - Haugh, Bishop (2003) (Correct)
BibTeX entry: (Update)
@misc{ hsu-principle,
author = "Fu-Hau Hsu",
title = "The Principle, Attack Patterns, and Defense Methods of Buffer Overflow
Attacks",
url = "citeseer.ist.psu.edu/article/hsu00principle.html" }
Citations (may not include all citations):261 Modern Operating System (context) - Tanenbaum - 1992
141 StackGuard: Automatic Adaptive Detection and Prevention of B.. - Cowan, Pu et al. - 1998
106 Advanced Programming in the UNIX Environment (context) - Stevens - 1992 ACM
66 Smashing The Stack For Fun and Profit (context) - One
53 The Internet Worm Program: Analysis - Spafford - 1989
38 Practical UNIX & Internet Security (context) - Garfinkel, Spafford - 1996
34 Backwards-compatible Bounds Checking for arrays and pointers.. - Jones, Kelly DBLP
19 Stack Smashing Vulnerabilities in the UNIX Operating System (context) - Smith
15 ww Heap Overflow (context) - on, http et al.
12 The Linux Kernel Book (context) - Card, Dumas et al. - 1998 ACM
6 Non-Executable User Stack (context) - Designer
4 Synthesizing Fast Intrusion Detection/Prevention Systems fro.. (context) - Sekar, Uppuluri - 1999
4 Attack Class: Buffer Overflow (context) - Thomas
4 Linux Kernel Internel (context) - Beck, Bohme et al. - 1996
3 Bugtraq Mailing List (context) - One
2 Pointers to Functions (context) - Summit
2 Linux SuperProbe vulnerability (context) - Swap-Linux
2 Posting to Bugtraq Mailing List (context) - Cowan
2 FreeBSD Insecure Library Function's Stack Integrity Check (context) - Snarskii - 1997
2 Posting to Bugtraq Mailing List (context) - Newsham - 1997
2 StackGuard Compilser: a Gcc Enhancement (context) - Cowan
1 Data Mining approaches for Intrusin Detection (context) - Lee, Stolfo - 1998
Documents on the same site (http://www.ecsl.cs.sunysb.edu/tech_reports.html): More
Dynamic 3D Graphics Workload Characterization and the.. - Mitra, Chiueh (1999) (Correct)
File System Support for Multimedia Applications - Niranjan (1996) (Correct)
Integrated Volume Compression and Visualization - Chiueh, Yang, He, Pfister.. (1997) (Correct)
Online articles have much greater impact More about CiteSeer.IST Add search form to your site Submit documents Feedback
CiteSeer.IST - Copyright Penn State and NEC