Question: Here's the vulnerable C code snippet: #include void malicious _ function ( ) { printf ( Malicious function executed! ) ; } void

Here's the vulnerable C code snippet:

#include

void malicious

_

function

() {

printf

("

Malicious function executed!

")

;

}

void

(*

func

_

ptr

) ()

;

void vulnerable

_

function

() {

/ /

Vulnerability: Overwriting func

_

ptr with malicious

_

function's address

func

_

ptr

=

malicious

_

function;

}

int main

() {

/ /

Call vulnerable function

vulnerable

_

function

()

;

/ /

Indirect function call through func

_

ptr

func

_

ptr

()

;

/ /

Potential security risk if func

_

ptr is pointing to malicious

_

function

/ /

Rest of the program

return

0

;

}

With CFI enabled, describe in detail how it prevents the attack and ensures the control flow integrity.

Step by Step Solution

There are 3 Steps involved in it

1 Expert Approved Answer

Step: 1 Unlock blur-text-image

Question Has Been Solved by an Expert!

Get step-by-step solutions from verified subject matter experts

Step: 2 Unlock

Step: 3 Unlock

Students Have Also Explored These Related Programming Questions!

Consider a scenario where an attacker exploits a vulnerability in a program to overwrite a legitimate function pointer (func_ptr) with a malicious function's address. The attacker's goal is to divert...

computer security course, please I need help it due 3 hours. 1 Lab Overview The learning objective of this lab is for students to gain the first-hand experience on buffer-overflow vulner- ability by...

Exercise: Buffer Overflow (85 points) The Buffer Overflow vulnerability has been discovered as early as 1972, and has long been among the most critical application security flaws. It is still very...

Implementing Linked List Utility Functions. PROGRAM MUST BE IN C PROGRAMMING AND PLEASE COMPLETE ALL AS WELL AS SEND SCREENSHOT OF OUTPUT FOR THE THUMBS UP!! Examine the files list.h and llist.c in...

FIles from tar gz: 1) func_desc.txt: Built in functions information: We will give a brief description of the merely built in functions you are allowed to use. You can find information on most of the...

Summary: you have been given a partially implemented C++ class called TravelOptions (file: TravelOptions.h). The class implements an ADT using singly-linked lists for which some functions are already...

Modify dealer.c (code provided below) so that the program is split into three source files and two header files. 1) Put all functions related to operations on the list of cars into car.c. 2) Create a...

I need to build the function symtbl_finalizeScope, which will be at the bottom of file symtbl.c Thanks Complete the implementation of the symbol table. A template of the symbol table program is given...

***MUST BE DONE IN C PROGRAMMING LANGUAGE** Modify the given code to do the following Given Code project 8: // Program for a car dealership to manage car inventory #include #include #include #include...

1.) Modify the below program dealer.c so that the program is split into three source files and two header files. A) Put all functions related to operations on the list of cars into car.c . B) Create...

Discuss the significance of recognizing the time value of money in the long-term impact of the capital budgeting decision.

The discussion of the evolution of business strategy that the characteristics of a firm's strategic plans and its strategic planning process are strongly influenced by the volatility and...

Explain storage structure and their access methods in detail. (10 M)

Use the indicated entry inside the brackets as the pivot and perform the pivoting process once Do not solve X1 X2 1 2 Z 1 2 1 1 8 0 0 6 8 0 1 0 8 12 0 0 1 O x1 x2 51 52 z 1 2 1 2 0 2 0 O x1 x2 1 2 1...