Stack Based Buffer Overflow Assessment and Counter measures
Shafiqullah Khaliqyaar
, Shaifali Sharma
Stack Overflow, Data execution prevention, Address space layout randomization, remote shellcode injection, privilege escalation, Win box Exploit, Smashing
This research investigates Buffer overflows attacks and its countermeasures. These attacks are very old and useful by which malicious attackers bypass the security mechanisms. Therefore, by this attack they can cause escalation of privilege to root level, take remote access to the victim machine and denial of service. Lack of existence of a centralized system to test the network hosts is the motivator to have further research and find a solution for the issue. The problem of buffer overflow is very crucial to prevent or at least mitigate them as soon as possible because the important private data of an organization is exposed to malicious uses of attackers. The theoretical, simulation and build methodologies are utilized to assess this vulnerability. Accordingly, by having a concept of computer memory and their related architecture (Theoretical), then mapped and analyzed these concepts on to virtualized environment prepared by GNS3 and VirtualBox (Simulation). Regarding the vulnerabilities and analyzing the weak points of system that expose them to Buffer Overflows, a python Graphical User Interface is application developed that can mitigate risk of the above mentioned attack (Build). The findings of this research shows provides a tool that enables the system administrator to have find whether his Mikrotik gateway is vulnerable to buffer overflows or not. Then providing a patch to vulnerable router by special mechanism against attack. Finally, this paper concludes that hosts in our network must be tested against buffer overflow to prevent unauthorized access to critical data and patch them manually or via similar applications that developed as result of this research paper.
"Stack Based Buffer Overflow Assessment and Counter measures ", IJSDR - International Journal of Scientific Development and Research (www.IJSDR.org), ISSN:2455-2631, Vol.7, Issue 5, page no.407 - 413, May-2022, Available :https://ijsdr.org/papers/IJSDR2205078.pdf
Volume 7
Issue 5,
May-2022
Pages : 407 - 413
Paper Reg. ID: IJSDR_200399
Published Paper Id: IJSDR2205078
Downloads: 000347247
Research Area: Computer Science & Technology
Country: Shimla, Himachal Pradesh, India
ISSN: 2455-2631 | IMPACT FACTOR: 9.15 Calculated By Google Scholar | ESTD YEAR: 2016
An International Scholarly Open Access Journal, Peer-Reviewed, Refereed Journal Impact Factor 9.15 Calculate by Google Scholar and Semantic Scholar | AI-Powered Research Tool, Multidisciplinary, Monthly, Multilanguage Journal Indexing in All Major Database & Metadata, Citation Generator
Publisher: IJSDR(IJ Publication) Janvi Wave
