Explore potential memory management issues, the risks associated with them, and learn how to avoid them.
- Memory management vulnerabilities…are a very special class…in that they're only exposed in certain languages…and certain situations.…The most common and the one that I will focus on…is the buffer overflow attack.…I want to start by providing a clear indication…of how bad buffer overflow vulnerabilities are.…There are several yearly contests…that result in large sums of prize money…for security researchers that compromise systems,…often called rooting.…
Some of the most profitable vulnerabilities…are called Zero Days…are a result of buffer overflow attacks.…These attacks are catastrophic…and can be expensive to say the least…and unfortunately are hard for those developers…who deal with higher level languages…to see or understand.…In higher level languages, for instance,…we seldom deal with raw memory allocations.…Even in languages like Go, Java and C#,…where we have pointers,…we're not usually able to manipulate raw memory…without dipping into unsafe code.…
As such, these languages are usually safe from these errors.…
AuthorFrank P Moley III
- Understanding attackers and risks
- Documenting your risks
- Issues related to web client–server interactions
- Issues related to thick app and client–server interactions
- Authorization and cryptography issues
- Implementing security in each phase of the software development life cycle
Skill Level Beginner
What you need to know1m 35s
1. Security and Risk Overview
2. Web Client Server Interaction Code Issues
3. Thick App and Client-Server Interaction Issues
4. Crypto and Security Misuse Issues
5. Security in the SDLC
Next steps2m 10s
- Mark as unwatched
- Mark all as unwatched
Are you sure you want to mark all the videos in this course as unwatched?
This will not affect your course history, your reports, or your certificates of completion for this course.Cancel
Take notes with your new membership!
Type in the entry box, then click Enter to save your note.
1:30Press on any video thumbnail to jump immediately to the timecode shown.
Notes are saved with you account but can also be exported as plain text, MS Word, PDF, Google Doc, or Evernote.