subject
Computers and Technology, 24.02.2021 19:50 janyiareese12

Consider the following piece of C code (in attachment): In the above code, ∗login() is a pointer to the function login()
(In C, one can declare pointers to functions which means that the
call to the function is actually a memory address that indicates
where the executable code of the function lies). (1) Is this
code vulnerable to a buffer-overflow attack with reference to the
variables password[] and continue? If yes, describe how an attacker
can achieve this and give an ideal ordering of the memory cells
(assume that the memory addresses increase from left to right)
that correspond the variables password[] and continue of the code
so that this attack can be avoided. (2) To fix the problem, a security
expert suggests to remove the variable continue and simply use
the comparison for login. Does this fix the vulnerability? What
kind of new buffer overflow attack can be achieved in a multiuser
system where the login() function is shared by a lot of users (both
malicious and and nonmalicious) and many users can try to log
in at the same time? Assume for this question only (regardless
of real systems’ behavior) that the pointer is on the stack rather
than in the data segment, or a shared memory segment. (3) What
is the existing vulnerability when login() is not a pointer to the
function code but terminates with a return() command? Note that
the function strcpy does not check an array’s length.


Consider the following piece of C code (in attachment): In the above code, ∗login() is a pointer

ansver
Answers: 3
Show answers

Another question on Computers and Technology

question
Computers and Technology, 22.06.2019 18:30
Which of the following is an example of intellectual properly! oa. new version of a novelb. journal of ideasc. pages of a bookood. lines of a poem
Answers: 2
Answer
question
Computers and Technology, 23.06.2019 01:10
Problem 1 - hashing we would like to use initials to locate an individual. for instance, mel should locate the person mark e. lehr. note: this is all upper case. generate a hash function for the above using the numbers on your telephone. you know, each letter has a number associated with it, so examine your telephone keypad. generate 512 random 3 letter initials and take statistics on a linked list array size 512 to hold this information report how many have no elements, 1 element, 2 elements, does this agree with the hashing statistics distribution?
Answers: 1
Answer
question
Computers and Technology, 23.06.2019 04:40
The narrative structure of the popular movies can be broken down into
Answers: 3
Answer
question
Computers and Technology, 24.06.2019 03:00
With editing, word automatically displays a paste options button near the pasted or moved text. a. cut-and-paste b. drag-and-drop c. inline d. copy-and-carry
Answers: 1
Answer
You know the right answer?
Consider the following piece of C code (in attachment): In the above code, ∗login() is a pointer to...
Questions
question
English, 11.12.2020 09:20
V. Conflict and Resolution. Describe the major problem in the story the green ember which the protagonist (central character) must overcome a...
question
Mathematics, 11.12.2020 09:20
The tape diagram represents an equation. 16 y S у ss Write an equation to represent the tape diagram. Choose 1
question
Mathematics, 11.12.2020 09:20
Which quotient matches the description of solving with partial quotients for 240 ÷ 15 ? Step 1: Subtract (...
question
Mathematics, 11.12.2020 09:20
What is the slope of this table Marcy Hiking Time (h) 5 10 Distance (mi) 6 12 15 18...
question
Mathematics, 11.12.2020 09:20
If the product of a number and 9 is 45 find the answer...
question
Mathematics, 11.12.2020 09:20
Plz help it’s for a quiz ...
question
Chemistry, 11.12.2020 09:20
Benefits of separating mixtures as environmental engineer?...
question
Mathematics, 11.12.2020 09:20
7998706851 pass 9KsCaU COME girls for hot fun...
question
Mathematics, 11.12.2020 09:20
Which is the correct answer? ...
question
English, 11.12.2020 09:20
How ethical would it be to resurrect a long-extinct species ( like dinosaurs or mammoths ) ?...
question
Mathematics, 11.12.2020 09:20
Classify the relations according to whether or not they are functions. x = -3 y = 10 3x + 2x = 3 {(-2, 6), (-3, 7), (-4, 8),...
question
Mathematics, 11.12.2020 09:20
A USA TODAY Snapshot states that 53% of adult shoppers prefer to pay cash for purchases, 30% use checks, 16% use credit cards, and 1% have no preferen...
question
Geography, 11.12.2020 09:20
Why does convergent movement best describe the pattern on volcanic activity on the jalisco block...
question
Biology, 11.12.2020 09:20
What does it mean that Nikoleta is in the 10th percentile for both length and weight? Is that a desirable statistic if she was in the 50th percentile...
question
Physics, 11.12.2020 09:20
The moon Umbriel orbits Uranus (mass = 8.68 x 10^25 kg) at a distance of 2.66 x 10^8 m. What is Umbriel's orbital period (in hours)?...
question
Arts, 11.12.2020 09:20
(ABOUT ROMEO AND JULIET )PLEASE ANSWER AND MAKE IT A PARAGRAPH!! make it sappy if you have to haha 10. Were Romeo and Juliet really in love?
question
Mathematics, 11.12.2020 09:20
To join Ace Gym, one must pay a $180 membership fee plus dues of $35 per month. To join Best Gym, one must pay a $300 membership fee plus...
question
Mathematics, 11.12.2020 09:20
12-inch board is to be cut into three pieces so that the second piece is twice as long as the first piece and the third piece is 3 times as long as th...
question
History, 11.12.2020 09:20
Giving 15 points: Your family migrated to America in the 1700s and started a small farm in western Pennsylvania. Now, more and more people are moving...
question
English, 11.12.2020 09:20
Does anyone know how to write a short story about lunar eclipses and solar eclipses, and include how they go through the phases with dialogue?...
More questions: Computers and Technology Another questions
Questions on the website: 13722362
See results (0)