Buffer Overflow

Hackers utilize multiple means to create malfunctions in an application. Buffer overflow is one of the most popular means of doing so. In buffer overflow, a hacker overloads the server by adding a flaw in an Internet form and sending excess information. Once the load overflows the limits, web server crashes take place. This has become a very popular hacking tool used by hackers today.

How does a hacker execute the entire act? Numerous websites display forms on their web page to be filled by visitors to the website. For instance, an e-commerce site asks customers to complete a personal information form during registration. Every specific field in the registration form accepts a maximum number of characters (quoted in the HTML source code). An intelligent hacker can formulate certain alterations in the source code setting and permit the browser to ask for higher character strength. He then gets back to the form and types a longer character in the given field, and then submits the form. On submission of the form, the application goes into a shock, as the application was not designed to accept the long character. Thus, it forces it to overflow parts of its memory. Also, it may result in the crashing of the system.

What are the ultimate consequences of the act? Buffer overflow is the best way to crash the system or make an application execute commands on behalf of the hacker. This technique can make a server dysfunctional, causing the website to stop functioning. A possible defense against such attacks is to craft systems with sophisticated versions of established protocols. This helps in reducing the risk of suffering from these attacks. The applications that host forms need to be able to manage an overflow of input. either using temporary space to dump the surplus data, or dump the submission of surplus inputs in a systematic way.

More…