Question: The buffer overflow example was fixed as below. Is this safe? (10pt) int bof(char *str, int size) { char *buffer = (char *) malloc(size); /*

The buffer overflow example was fixed as below. Is this safe? (10pt)

int bof(char *str, int size)

{ char *buffer = (char *) malloc(size);

/* The following statement has a buffer overflow problem */

strcpy(buffer, str);

return 1;

}

Step by Step Solution

There are 3 Steps involved in it

1 Expert Approved Answer
Step: 1 Unlock blur-text-image
Question Has Been Solved by an Expert!

Get step-by-step solutions from verified subject matter experts

Step: 2 Unlock
Step: 3 Unlock

Students Have Also Explored These Related Databases Questions!

Q:

Question 1: Why does ASLR make buffer-overflow attack more difficult? [20 points] Question 2: The buffer overflow example was fixed as below. Is this safe? [20point] int bof (char *str, int size) {...

Q:

The buffer overflow example was fixed as below. Is this safe? int bof (char *str, int size) { char *buffer = (char *) malloc (size); strcpy (buffer, str); return 1; }

Q:

The buffer overflow example was fixed as below. Is this safe ? int bof(char * )str, int size){ char *buffer = (char *) malloc(size); strcpy(buffer, str); return 1; }

Q:

Computer Security 5. The following function is called in a privileged program. The argument str points to a string that is entirely provided by users (the size of the string is up to 300 bytes). When...

Q:

4. The following function is called in a privileged program. The argument str points to a string that is entirely provided by users (the size of the string is up to 300 bytes). When this function is...

Q:

computer security 4.4. A student proposes to change how the stack grows. Instead of growing from high address to low address, the student proposes to let the stack grow from low address to high...

Q:

int bof (char *str) { } Draw a function stack frame for the following C function. char buffer[24]; strcpy (buffer, str); return 1; Question 2: Why does ASLR make buffer-overflow attack more...

Q:

In the buffer overflow example shown in the code below, the buffer overflow occurs inside the strcpy() function, so the jumping to the malicious code occurs when strcpy() returns, not when foo()...

Q:

Insecure Code /* Simple buffer overflow example Warning this is an example with many pieces of insecure code and information. Inspired by INSIDE THE BUFFER OVERFLOW ATTACK: MECHANISM, METHOD, &...

Q:

These functions are part of a simple shopping cart application where the user is asked to select items to add to their cart by item name. The program maintains a list of item names for sale and...

Q:

Students did an experiment on Swansea University jet engine. They measured ambient temperature 16 deg C and ambient pressure 1.02 bar, engine RPM 49,042 , thrust 11.1328 N, air flow 23.2031 l/s, fuel...

Q:

18. Equal volumes of two solutions containing 3.65g of HCl and 4.0 g of NaOH respectively are mixed. The pli of the mixture is 2) 7 19. When Imi of 0.IN HCIIS added to 1 litre of a solution of...

Q:

A New York television station decides to produce a story comparing two commuter railroads in the area: the Long Island Rail Road (LIRR) and New Jersey Transit (NJT). Data analysts at the television...

Q:

CT Corp Comprehensive Question Canadian Tire Corporation, Limited (Canadian Tire) is a family of companies that includes a retail segment and a financial services division, among others. The retail...

Q:

Stereotype threat, arises when one is in a situation or doing something for which a negative stereotype about ones group applies (Steele 1997:614) and has the potential to lower the motivation and...

Q:

1-4 How will MIS help my career?

Q:

The Social Justice case for D&I has been argued in strategic human resource management literature as having longer term impact in building an inclusive culture, as opposed to the Business Case,...