Question: 4. Consider the following C code fragment: 1 int 2 main(int argc, char **argv) 3 { 4 = 8 5 char Ibuf [1024] = {

4. Consider the following C code fragment: 1 int 2 main(int argc, char **argv) 3 { 4 = 8 5 char Ibuf [1024]

4. Consider the following C code fragment: 1 int 2 main(int argc, char **argv) 3 { 4 = 8 5 char Ibuf [1024] = { 0, }; 6 7 (void) read (STDIN_FILENO, Ibuf, 1023); (void) foobar (Ibuf); 9 10 exit (0); 11 } 12 13 int 14 bar (char *arg) 15 { 16 17 char msg [1024] { 0, }; 18 19 snprintf(msg, 1023, arg); 20 return write (STDOUT_FILENO, msg, strlen (msg)); 21 } 22 23 void foobar (char *arg) { return bar(arg); } = a. Give a thorough description of the program's vulnerability. In particular, name the vulnerability (1 mark) and provide a detailed overview of its exploitation (3 marks). Then, identify and explain thoroughly all the components that are involved in the exploit (4 marks). [8 marks] b. How would an attacker exploit the vulnerability? Hint: describe in detail what the injection vector would look like (and what retaddr and retloc the attacker may use). Use symbolic values and addresses when needed (no need to write down the shellcode). [10 marks] c. Would StackGuard or a bounds checker mitigate the vulnerability (1 mark)? Explain clearly the reasons (4 marks). [5 marks) d. How can the program be fixed? [2 marks]

Step by Step Solution

There are 3 Steps involved in it

1 Expert Approved Answer

Step: 1 Unlock blur-text-image

Question Has Been Solved by an Expert!

Get step-by-step solutions from verified subject matter experts

Step: 2 Unlock

Step: 3 Unlock

Students Have Also Explored These Related Databases Questions!

2. Consider the following C code fragment: 1 int 2 main(int argc, char **argv) 3 { 4 5 int n; n = 6 7 if (argc 2) 8 foobar (argv[1]); 9 else exit (1); 10 11 printf("Hey! %s, nice to meet ya (%d) ",...

1. Question. Consider the following C code fragment: 1 v o i d 2 f o o b a r ( ch a r a rg ) 3 { 4 5 ch a r msg [ 2 5 6 ] ; 6 7 memset (msg , 0 , s i z e o f ( msg ) ) ; 8 9 // s h a l l we t r u s t...

Part 3. Python . Plc Python supports several forms of slicing. Assume that vector is defined below (2, 4, 6, 8, 10, 12, 14, 16) What is the value of vector (0:7:2)? Assume that a C array has been...

Consider the following C++ code fragment 1 char name (). 2 name [] = "James Khumalo"; 3 for (int i = 0; name [1] != '\0', 1++){ 4 if (name [i] == 'm') { 5 name (1] = '*'; 6} 8 9 cout

4. Question. Consider the following C code fragment and assume the pro- gram name is fixed to vuln, it is invoked as ./vuln (i.e., argv[0]) and cannot be changed by an attacker. 1 int 2 main(int...

3. Consider the following C code fragment and assume the program name is fixed to vuln, it is invoked as ./vuln (i.e., argv[0]) and cannot be changed by an attacker. 1 int 2 main (int argc, char...

Codes you need /* * bytedump.c * * This program reads a set number of bytes from a file and prints * out the hex/ASCII values one byte at a time. * * Compile: gcc bytedump.c -o bytedump */ #include...

Hello, we have an exam coming up soon from a professor that barely ever teaches the right material and was wondering if I could get a little extra help with this study guide. Thanks! Assume V is a...

3. Consider the following C code fragment, which makes use of the strcpy version that truncates a copy after n bytes (i.e., strncpy): 1 int 2 main(int argc, char **argv) 3 { 4 return bar(argv[1]); 5...

Why have many companies recently suspended matching contributions to employees' 401(k) plans?

A hydrogen atom in its ground state [( n , l , m ) = (1, 0, 0)] is placed between the plates of a capacitor. A time-dependent but spatial uniform electric field (not potential!) is applied as...

During 2 0 0 9 , M Co . had the following two classes of stock issued and outstanding for the entire year: 4 0 0 , 0 0 0 shares of common stock, $ 1 par. 2 , 0 0 0 shares of 4 % preferred stock, $ 1...

last two options for the multiple choice are : performance management development A construction equipment manufacturer, Roswell Corporation, is focusing on becoming a leader in sustainability in...

10-8 The mobile platform may not make desktop PCs obsolete, but corporations will have to change their business models to adjust to this shift. Do you agree? Why or why not?

10-12 Pick one e-commerce company on the Internetfor example, Ashford, Buy.com, Yahoo, or Priceline. Study the Web pages that describe the company and explain its purpose and structure. Use the Web...

4. What role does Orbitz for Business play in the companys business strategy? When it comes to mobile apps and gauging their impact on consumers and business, the online travel industry and its...