Nuxified

FOSS technologies explained

  • Useful Articles
  • Blogs
  • Images
  • Tips
  • Archives
You are here: Home / Exploits VS Buffer Overflows

Exploits VS Buffer Overflows

What does Exploit means ?
Exploit is a very small program that when utilized causes a software vulnerability to be triggered and leveraged by the attacker.

What does Buffer Overflows means ?
Buffer Overflow occurs when a buffer that has been allocated a specific storage space has more data copied to it than it can handle.

So…
Have you checked your server’s log files lately ???
Did you notice something like… this !!!

“..//..//..//..//..//..//..//..//”

This is NOT a good sign !

Check out the following 7 lines of code…

7 lines of code...

It is simple to understand what is going on…
Line 3: Creates a directory
Line 4: Changes to the new directory
Line 5: Then changes the root directory of the current shell to the directory ..//..//..//..//

Nice… Hmmm !!!
This is the traditional way to break out of chroot jails in a Linux Operating System !!!
Recently, I had such an expirience…
You will tell me… So what ?
OK ! Let us add now a little Shellcode.
Shellcode is the code executed when a vulnerability has been exploited.
Something like this…
Shellcode
Then try to execute that code.
As you see, it is getting “better” and “better” !
Of course, with the latest releases of the Linux Kernel, chroot jails has been fixed, BUT there will always be something that programmers have missed. After all, they are just human.

Conclusion: We need to write more secure code !

P.S
For security reasons, as you may have already notice, the two blocks of code are in .jpg style !!!

Learn Unix

I run Unix Tutorial website and help anyone interested to pick up Unix skills. If you have questions or just want to share your ideas – please join the Unix Tutorial on Facebook.

Tech Stack Solutions

Tech Stack Solutions is my company that provides Unix support. Sign up or simply get in touch to find out how I can help!

Search this Website

You May Also Like

Recent Posts

  • Advice on using SUDO
  • FFmpeg 4.0
  • KDE Plasma 5.9.0 Release
  • How to Install Ubuntu Linux without a DVD or USB
  • How to Securely Save All Your Passwords with Keepass
  • 9 Signs You Should Use Linux on Your Computer
  • The Easiest Way to Optimize Your MySQL Database Performance
  • Setting up a Linux Web Development Environment in Windows
  • Hunting Down Disk Space Hogs on Linux Command Line
  • 6 Simple Android Apps for Monitoring and Managing Your Linux Server

Archives

Categories

  • Community Blogs
  • Images and Screenshots
  • News
  • Technical Topics
  • Useful Articles

Basic Unix Commands

Basic Unix Commands
  • ls command
  • mkdir command
  • man command in unix
  • cd command - change directory
  • uname command

Advanced Unix Commands

Advanced Unix Commands
  • ln command - symlinks
  • tune2fs unix command - filesystem parameters
  • du command - disk usage
  • lsb_release command
  • find unix command

Unix Reference

Unix Reference
  • SSH port forwarding
  • unix commands
  • visudo tutorial
  • mtime unix
  • lrwxrwxrwx
  • Unix Tutorial digest

Unix Books

Unix Tutorials

Unix How-Tos
  • check raspbian version
  • autostart in KVM
  • List files in Ubuntu package
  • check CentOS version
  • create bootable USB in MacOS
  • Useful Articles
  • Blogs
  • Images
  • Tips
  • Archives

Copyright © 2021 · Education Pro Theme on Genesis Framework · WordPress · Log in