1
Q
How are Buffer Overflow attacks harmful?
A
Attacker can exploit to make an app run arbitary code.
E.g: SQL attacks, countless worms.
2
Q
What are the elements of x86 architecture?
A
Text: Instructions
Data: Static variables
Heap
Stack: command line args
3
Q
What are ESP and EBP?
A
ESP: Points to stack top.
EBP: Points to base of stack frame.
4
Q
Describe the NX bit?
A
Provides hardware distinction between text and stack.
Program will crash if EIP points to stack.
5
Q
What is an attack against the NX bit?
A
Reuse code from executable memory.
E.g: Jump to another function, jump to library function
6
Q
What is ASLR?
A
Address Space Layout Randomization.
Adds random stack offset code base offset each time it runs.
