Question
a.
By overwriting the area in the stack where parameters were passed to the function
b.
By using a specially crafted buffer to overwrite the memory address used for returning values to the caller
c.
By figuring out an address to write to in memory that would allow them to run their own code before the process is terminated by the stack-checking code
d.
All of the above
Posted under Reverse Engineering
Engage with the Community - Add Your Comment
Confused About the Answer? Ask for Details Here.
Know the Explanation? Add it Here.
Q. How can an attacker defeat stack checking?
Similar Questions
Discover Related MCQs
Q. What is nonexecutable memory?
View solution
Q. Which processors provide support for nonexecutable memory?
View solution
Q. Which operating systems support nonexecutable memory?
View solution
Q. Does nonexecutable memory completely eliminate the problem of buffer overflow attacks?
View solution
Q. What is the most popular strategy for attackers to overcome the hurdles imposed by nonexecutable memory systems?
View solution
Q. Which option is used for returning values to the caller in functions?
View solution
Q. Which type of vulnerability is required for an attacker to exploit the buffer overflow bug?
View solution
Q. What is the purpose of stack-checking mechanisms embedded into programs?
View solution
Q. What is a heap overflow?
View solution
Q. How does a heap overflow attack work?
View solution
Q. How are heaps arranged?
View solution
Q. What causes the program to crash in a heap overflow attack?
View solution
Q. How can attackers take advantage of the heap's linked-list structure?
View solution
Q. Why are heap overflows less common than stack overflows?
View solution
Q. What is the most common example of overflow attacks?
View solution
Q. What is the risk of using the strcpy function?
View solution
Q. What are heap overflows and why are they less common than stack overflows?
View solution
Q. What is the most common example of string-related overflow attacks?
View solution
Q. What happens if an attacker's string is internally converted into Unicode before it reaches the vulnerable function?
View solution
Q. What are integer overflows?
View solution
Suggested Topics
Are you eager to expand your knowledge beyond Reverse Engineering? We've curated a selection of related categories that you might find intriguing.
Click on the categories below to discover a wealth of MCQs and enrich your understanding of Computer Science. Happy exploring!
