| 计算机缓冲区溢出安全问题研究 |
| |
| 引用本文: | 叶红,安东升. 计算机缓冲区溢出安全问题研究[J]. 计算机工程与科学, 2004, 26(11): 37-41 |
| |
| 作者姓名: | 叶红 安东升 |
| |
| 作者单位: | 北京工商大学,北京,100037;总参气象中心,北京,100081 |
| |
| 摘 要: | 使用缓冲区溢出和suid程序,已经成为计算机黑客高手们为得到远程root权限而最常使用的方法。本文重点分析了使用缓冲溢出攻击的原理,并提出了对应的防范策略。
|
| 关 键 词: | 缓冲区溢出 堆栈 堆 shellcode |
| 文章编号: | 1007-130X(2004)11-0037-05 |
| 修稿时间: | 2004-03-08 |
Security Research on Computer Buffer Overflow |
| |
| YE Hong,AN Dong-sheng. Security Research on Computer Buffer Overflow[J]. Computer Engineering & Science, 2004, 26(11): 37-41 |
| |
| Authors: | YE Hong AN Dong-sheng |
| |
| Affiliation: | YE Hong~1,AN Dong-sheng~2 |
| |
| Abstract: | In order to attack and get the remote root privilege, using buffer overflow and the suid program has become the commonly used method for hackers. In this paper, the attacking principles using buffer overflow on computers are analyzed, and the corresponding protection strategies are also put forward. |
| |
| Keywords: | buffer overflow stack heap shell code |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
| 点击此处可从《计算机工程与科学》浏览原始摘要信息 |
|
点击此处可从《计算机工程与科学》下载免费的PDF全文 |
