stackoom
  简体   繁体   中英

Buffer Overflow Attack with Int

 原文  2022-05-09 12:00:03       arrays/ c/ buffer-overflow

Question

char c[10];
int value = 1;

Why the value changes to 0 until I enter 12 chars? Why is 12 not 10 or 11? (I know the terminator and how it pushed to the next memory space)

1 answers

solution1
 1 ACCPTED  2022-05-09 12:05:35

Objects of a given type are typically placed at memory locations that are a multiple of the object size, ie the object is aligned to a boundary matching its size.

An int is typically 4 bytes in size. If c is placed before value in memory, and if c started at a 4 byte offset, then there will be two bytes of padding between them. This would explain why value doesn't get overwritten unless more than 12 bytes or more are written to c .

Note also that this is all undefined behavior as far as the C standard is concerned, however for the purpose of exploiting vulnerabilities it can be useful to examine what specific implementations do under certain conditions.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Simple Buffer Overflow in C Array buffer overflow How to prevent Buffer overflow / array overflow? What is causing the Stack Buffer Overflow? buffer overflow in c++ [on hold] Heap buffer overflow in allocated array Buffer overflow vulnerabilities with char[ ] and char * buffer overflow while writing to char array Heap Buffer Overflow from a 2d array Return value 3221225725, possible buffer overflow?
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM