This document discusses control hijacking attacks and defenses against them. Control hijacking attacks overwrite data structures to hijack a program's control flow and take control of the underlying system. Defenses include run-time checking that validates data types and array bounds to prevent buffer overflows from corrupting memory and hijacking control. While run-time checking prevents attacks, it can also generate false alarms, so more accurate techniques are needed.

1. Hijacking &
Defense

2. Content

3. Control Hijacking.
• A control-hijacking attack overwrites some data structures in a victim program that affect
its control flow, and eventually hijacks the control of the program and possibly the underlying
system. ... It causes some of that data to leak out into other buffers, which can corrupt or
overwrite whatever data they were holding.
low.

4. More Control
Hijacking attacks
integer overflow.

5. Integer overflows

6. An example

7. Cont…

8. Format string problem

9. Vulnerable functions

10. Platform Defense

11. Control Hijacking Attacks

12. Control hijacking
attacks

13. Preventing hijacking attacks

14. Preventing hijacking attacks

15. Cont….

16. Run-time checking

17. Run-time checking array bounds

18. Jones-Kelly approach (1997)

19. Cont…..

20. Example of a False Alarm

21. THANK YOU 