Explore topic-wise InterviewSolutions in .

The correct answer is (a) True

To elaborate: TESTING for buffer-overflow in a system can be done manually, and has two POSSIBLE ways. One WAY is to look into the code and check whether the boundary check has been PROPERLY INCORPORATED or not. The other way is to make the executable build of the product, feed the application with a huge amount of data and check for abnormal behaviour.

The correct CHOICE is (c) 2

Easy explanation: There are TWO ways to detect buffer-overflow in an application. One way is to look into the code and check WHETHER the boundary check has been properly incorporated or not. The other way is to make the executable build of the PRODUCT, feed the application with a huge amount of data and check for abnormal BEHAVIOUR.

Correct choice is (d) heap

To EXPLAIN I would say: Variables that gets created dynamically when a function (such as malloc()) is called is created in the form of heap data-structure. In heap-based OVERFLOW, the buffer is PLACED on the lower PART of the heap, overwriting all dynamically generated variables.

Right answer is (a) stack, buffer-overflow

The BEST EXPLANATION: Malicious CODE can be pushed into the stack during the buffer-overflow ATTACK. The overflow can be used to OVERWRITE the return pointer so that the control-flow switches to the malicious code.

Right option is (c) statically

The best I can EXPLAIN: In APPLICATION that USES heap, memory utilized by the application is allocated at the BEGINNING of the function CALL and the memory get released at the end of a program. Accessing of values in the stack is very fast.

Right option is (b) dynamically

For explanation: In an APPLICATION that USES the HEAP, memory UTILIZED by the application is ALLOCATED dynamically at runtime. Access to such memories is comparatively slower than memories that use the stack.

The correct option is (b) segmentation

Explanation: In buffer-overflow, with the lack of boundary CHECK, the PROGRAM ends ABNORMALLY and leads to segmentation error or BUS error. SOMETIMES the application on which the attack was done get stuck or hang and suddenly the app closes.

Correct choice is (C) Stack-based

For EXPLANATION: In the CASE of stack-based buffer overflows, which is very common among the TWO types of buffer-overflow; it exploits APPLICATIONS by flooding the stack: memory-space where users externally input the data.

Right option is (d) heap-based

Easy EXPLANATION: Among the two types of buffer-overflow, heap-based buffer-overflow attacks are hard to EXECUTE and the least common of the 2 types. It attacks the application by FLOODING the space of memory that is reserved for a PROGRAM.

Right option is (d) UNIX

Explanation: Old operating SYSTEMS LIKE UNIX and NT-based systems have buffer-overflow attack a COMMON VULNERABILITY. This is because they were developed in old programming languages.

Correct choice is (a) No string boundary checks in predefined functions

For explanation I would SAY: The strcat(), STRCPY(), sprintf(), gets() etc when CALLED in C and C++ can be exploited because these functions don’t check whether the stack is large enough for storing the data fetched from some other variable HOLDING larger data.

Right choice is (c) C, C++

Easy explanation: Applications DEVELOPED by programming LANGUAGES like C and C++ have this common buffer-overflow error. The strcat(), STRCPY(), sprintf(), GETS() etc when called in C and C++ can be exploited because these functions don’t check whether the stack is large enough for storing the DATA.

The correct choice is (c) BOUNDARY checks

Best explanation: Buffer-overflow MAY remain as a BUG in APPS if boundary checks are not done fully by developers or are skipped by the QA (Quality Assurance) testers of the software development team.

Right choice is (a) buffer-overrun

The BEST I can explain: Buffer-overflow, also known as buffer-overrun is a WIDESPREAD APPLICATION’s coding mistake made by app developers which could be exploited by an ATTACKER for gaining access or malfunctioning your SYSTEM.

Right OPTION is (b) Buffer-overrun

For explanation I would SAY: Buffer-overflow, ALSO known as buffer-overrun is a widespread application’s coding MISTAKE made by developers which could be exploited by an attacker for gaining access or malfunctioning your system.

Correct ANSWER is (c) Buffer-overflow

For explanation I would say: In a buffer-overflow ATTACK, the extra data that holds some SPECIFIC instructions in the memory for ACTIONS is PROJECTED by a cyber-criminal or penetration tester to crack the system.

Right choice is (d) BUFFER

To EXPLAIN: A buffer is a sequential SEGMENT of the memory LOCATION that is allocated for containing some data such as a character string or an array of integers. The buffer can handle data only if limited data is inserted.