摘要
着重分析一些存在缓冲区溢出攻击漏洞的C语言函数,介绍具有哪些特点的C函数容易受到缓冲区溢出攻击,并借此更加深入地了解缓冲区溢出攻击机制.探讨了缓冲区溢出攻击程序的结构.最后提出避免缓冲区溢出攻击的方法.该方法从C函数和攻击程序两方面入手,通过避免或正确使用有缓冲区溢出攻击漏洞的C语言函数;了解恶意程序代码的结构识别恶意程序代码,达到避免缓冲区溢出攻击的目的.
The buffer overflow attack loopholes are emphatically analyzed in some C language functions. It introduces the characteristics that the C functions are easily attacked, enables the buffer overflow mechanism and makes more clearly by analyzing the structure of the evil attack program, and finally some methods that can avoid the buffer overflow attack are proposed. The methods start with two aspects: The C function can avoid the attack program through avoiding attack or correctly using the C language function that has buffer overflow loopholes;The structure of the evil intention program is understood and recognized. The method finally achieves the goal to avoid the buffer overflow attack.
出处
《沈阳化工学院学报》
2008年第3期265-268,共4页
Journal of Shenyang Institute of Chemical Technolgy
关键词
缓冲区
溢出
安全攻击
buffer
overflow
attack loophole
