Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 312
  • Last Modified:

Buffer overflows

g'day experts,

I am researching web application security and I wonder if anyone knows a good example of a buffer overflow attack on a company web site that is either well documented or which they could expalin.

All i can get at the moment is definitions and decriptions, I really need an example of an attack that has occured. It has to be one that targeted a web applcation.

thank you
0
claracruz
Asked:
claracruz
3 Solutions
 
Tim HolmanCommented:
Code Red is probably the better known example:

http://www.cert.org/advisories/CA-2001-19.html
0
 
rsripracCommented:
I like using:

http://icat.nist.gov/icat.cfm

And just search "Buffer overflow", and you should get a good list from there.  For some of the adviserires they will give some proof of concepts.

Also if your are a real noob, you should start here:

http://www.securiteam.com/securityreviews/5OP0B006UQ.html

-Ram
0
 
CoopRCommented:
Try http://www.infosecwriters.com/hhworld/hh8/WideChapter.txt

While not a bufferflow for a webserver ithe basics are still the same regardless of what  it's targeting and it is very well documented.

If your looking for real life forensics reports then that may be tough, I'd imagine most companies keep that sort of thing confidential. I would recomend looking at the hackers challenge books, they have excellent examples bassed on real life situations. http://www.amazon.co.uk/exec/obidos/ASIN/0072193840/ref=pd_sim_b_dp_5/202-4673388-5023834
0

Featured Post

Evaluating UTMs? Here's what you need to know!

Evaluating a UTM appliance and vendor can prove to be an overwhelming exercise.  How can you make sure that you're getting the security that your organization needs without breaking the bank? Check out our UTM Buyer's Guide for more information on what you should be looking for!

Tackle projects and never again get stuck behind a technical roadblock.
Join Now