With the rapid development of computer and related information technologies, risks associated with computer system are increasingly rampant[1]. And buffer overflow vulnerability is still the primary mean used by many hackers to attack soft application especially developed in unsafe programming languages like C or C++, although it has been exiting for two decades. A variety of corresponding defenses has been proposed and hackers also continue to come up with new attack methods to bypass the defense. This article mainly introduces the concept of stack-based buffer overflow and then discusses current main attacks and corresponding defenses based on the stack-based buffer overflow.
展开▼