Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Practicing buffer overflow attack in Ubuntu

Tags:

random

memory

ubuntu

I am trying to learn to use buffer overflow attack in Ubuntu. Unfortunately, I cannot turn off Address Space Layout Randomization (ASLR) feature in this OS, which is turned on by default. I have tried some work around found in some fedora books:

echo "0" > /proc/sys/kernel/randomize_va_space

but for some reason the protection's still there. Please give me some suggestions. Thanks.

[edit]Actually the above command was not successful, it said "Permission Denied", even with sudo. How can I fix that?

[adding] I kept on getting segmetation fault error when it shows an address in stack. Is it related to non-executable stack in ubuntu :(?

like image 398
wakandan Avatar asked Jul 02 '09 02:07

wakandan

People also ask

How do hackers use buffer overflow?

A buffer overflow attack occurs when a hacker exploits the coding error to perform a malicious activity and compromise the impacted system. The cybercriminal modifies the execution path of the app and overwrites elements of its memory, causing existing files to be damaged or confidential information to be exposed.

What is the most effective solution to buffer overflow attacks?

Buffer Overflow Solutions The most reliable way to avoid or prevent buffer overflows is to use automatic protection at the language level. Another fix is bounds-checking enforced at run-time, which prevents buffer overrun by automatically checking that data written to a buffer is within acceptable boundaries.

How does Linux protect against buffer overflow?

There are mainly four methods to protect against buffer overflows: patch the kernel to prevent stack execution. You can use either: Exec-shield, OpenWall or PaX (included in the Grsecurity and Adamantix patches). fix the source code by using tools to find fragments of it that might introduce this vulnerability.

3 Answers

You will need root perms before attempting it, and if I'm not mistaken, to restart once you've done it.

 sudo -i
 echo "0" > /proc/sys/kernel/randomize_va_space
like image 83
scragar Avatar answered Sep 25 '22 10:09

scragar

found it myself

you have to compile this way:

gcc -fno-stack-protector -z execstack -o OUTPUT INPUT.c

like image 34
IP-Sh0k Avatar answered Sep 23 '22 10:09

IP-Sh0k

to echo to files with root acces using sudo you can use the following code:

echo "0" | sudo tee /proc/sys/kernel/randomize_va_space
like image 43
knittl Avatar answered Sep 25 '22 10:09

knittl
Sign in to Comment

Related questions

Using jemalloc in existing huge code
Resource usage of "time.sleep" in loop vs. "threading.Timer"
How is null represented in memory in java [duplicate]
How is dynamically allocated memory kept track in C [duplicate]
What are common values for uninitialized memory for debugging?
Getting an object from its address
Why is Memory Usage section disabled in performance profiler?
Allocating large blocks of memory with new
intrinsic memcmp
How to prevent unnecessary memory use in recursive functions
C++0x Tuples Store Elements Backwards
How do I use a chain of operator overloads without modifying the operands?
Trivial Destructibility and Necessity of Calling Destructor
Very brutal swap using template, xor and pointers to to the memory
Log memory accesses that cause major page faults
Kafka Memory requirement
Does fork() duplicate all the memory of the parent?
Java's RAM usage doesn't correspond to what the Task Manager says
Is CPU speed limited by the speed of fetching instructions from memory?
Windows ring buffer without copying

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!