Buffer overflows

g'day experts,

I am researching web application security and I wonder if anyone knows a good example of a buffer overflow attack on a company web site that is either well documented or which they could expalin.

All i can get at the moment is definitions and decriptions, I really need an example of an attack that has occured. It has to be one that targeted a web applcation.

thank you
LVL 4
claracruzAsked:
Who is Participating?
 
rsripracCommented:
I like using:

http://icat.nist.gov/icat.cfm

And just search "Buffer overflow", and you should get a good list from there.  For some of the adviserires they will give some proof of concepts.

Also if your are a real noob, you should start here:

http://www.securiteam.com/securityreviews/5OP0B006UQ.html

-Ram
0
 
Tim HolmanCommented:
Code Red is probably the better known example:

http://www.cert.org/advisories/CA-2001-19.html
0
 
CoopRCommented:
Try http://www.infosecwriters.com/hhworld/hh8/WideChapter.txt

While not a bufferflow for a webserver ithe basics are still the same regardless of what  it's targeting and it is very well documented.

If your looking for real life forensics reports then that may be tough, I'd imagine most companies keep that sort of thing confidential. I would recomend looking at the hackers challenge books, they have excellent examples bassed on real life situations. http://www.amazon.co.uk/exec/obidos/ASIN/0072193840/ref=pd_sim_b_dp_5/202-4673388-5023834
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.