| 缓冲区溢出漏洞利用研究 |
| |
| 引用本文: | 冯潇. 缓冲区溢出漏洞利用研究[J]. 北京联合大学学报(自然科学版), 2009, 23(2) |
| |
| 作者姓名: | 冯潇 |
| |
| 作者单位: | 重庆邮电大学,计算机科学与技术学院,重庆,410065 |
| |
| 摘 要: | 远程缓冲区溢出漏洞是网络安全领域最严重的安全漏洞.而远程过程调用广泛应用于分布式环境中,是发起远程缓冲区溢出攻击的常见手段.首先,阐述缓冲区溢出的基本原理,给出windows下利用远程过程调用发起远程缓冲区溢出攻击的一般方法和主要流程,通过一个缓冲区溢出漏洞利用的实例,说明攻击流程和分析方法的有效性,为如何在网络环境下有效防范缓冲区溢出漏洞利用提供指导.
|
| 关 键 词: | 缓冲区溢出 恶意代码 漏洞利用 远程过程调用 逆向技术 |
On Vulnerability Exploiting of Buffer Overflow |
| |
| FENG Xiao. On Vulnerability Exploiting of Buffer Overflow[J]. Journal of Beijing Union University, 2009, 23(2) |
| |
| Authors: | FENG Xiao |
| |
| Affiliation: | FENG Xiao(ChongQing University of Post , Telecomcommunications,School of Computer Science , Technology,Chongqing 410065,China) |
| |
| Abstract: | The remote buffer overflow vulnerability is the most serious security vulnerability in network security domain.Remote procedure call has been widely applied to distribute computing.Thus,RPC is a common technology which is used in vulnerability exploiting of buffer overflow.Firstly,the principles and technology about buffer overflow exploiting are described,and then methods of vulnerability analysis and the process of vulnerability exploiting by RPC are provided,because most of buffer overflows exploiting be... |
| |
| Keywords: | buffer overflow shellcode vulnerability exploiting RPC Reversing technology |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
