Back to glossary

Buffer Overflow

A vulnerability that occurs when a program writes more data to a block of memory (a buffer) than it is allocated to hold.

Categorysecurity

Overview

When a buffer overflow occurs, the extra data 'overflows' into adjacent memory locations. This can corrupt data, crash the program, or, most dangerously, allow an attacker to overwrite the program's execution flow and run malicious code.

Impact

Buffer overflows have been a major source of security vulnerabilities for decades. They can lead to privilege escalation, remote code execution, and system takeovers.

Prevention

  • Safe Programming Languages: Using languages with built-in memory management (e.g., Rust, Java, Python).
  • Input Validation: Ensuring data fits within the allocated buffer.
  • Security Features: Using OS-level protections like ASLR (Address Space Layout Randomization) and DEP (Data Execution Prevention).

Related Terms

Application SecurityPrivilege EscalationZero-Day Exploit