[WebGoat 5.4-05] Buffer Overflows

1. Off-by-One Overflows

---

 

OWASP WebGoat: Buffer Overflows 솔루션 비디오 보기 [View | Download]   

Description: Version 5.4 introduced nice Off-by-One Buffer Overflow vulnerability drill. Despite being more rare, buffer overflow vulnerabilities on the web occur when a tier of the application has insufficient memory allocated to deal with the data submitted by the user. Typically, such a tier would be written in C or a similar language. For the particular subset, namely, off-by-one overflows, this lesson focuses on the consequences of being able to overwrite the position for the trailing null byte. As a result, further information is returned back to the user, due to the fact that no null byte was found. As of writing, this lesson has not been developed yet by WebGoat authors. 
Size: N/A