Security Holes Involving Dangling Pointers
Like buffer-overflow bugs, dangling/wild pointer bugs frequently become security holes. For example, if the pointer is used to make a virtual function call, a different address (possibly pointing at exploit code) may be called due to the vtable pointer being overwritten. Alternatively, if the pointer is used for writing to memory, some other data structure may be corrupted. Even if the memory is only read once the pointer becomes dangling, it can lead to information leaks (if interesting data is put in the next structure allocated there) or to privilege escalation (if the now-invalid memory is used in security checks).
Read more about this topic: Dangling Pointer
Famous quotes containing the words security, holes, involving and/or dangling:
“I feel a sincere wish indeed to see our government brought back to it’s republican principles, to see that kind of government firmly fixed, to which my whole life has been devoted. I hope we shall now see it so established, as that when I retire, it may be under full security that we are to continue free and happy.”
—Thomas Jefferson (1743–1826)
“But Father John went up,
And Father John went down;
And he wore small holes in his shoes,
And he wore large holes in his gown.”
—William Butler Yeats (1865–1939)
“Art is identical with a state of capacity to make, involving a true course of reasoning. All art is concerned with coming into being ... for art is concerned neither with things that are, or come into being, by necessity, nor with things that do so in accordance with nature.”
—Aristotle (384–323 B.C.)
“And, indeed, is there not something holy about a great kitchen?... The scoured gleam of row upon row of metal vessels dangling from hooks or reposing on their shelves till needed with the air of so many chalices waiting for the celebration of the sacrament of food. And the range like an altar, yes, before which my mother bowed in perpetual homage, a fringe of sweat upon her upper lip and the fire glowing in her cheeks.”
—Angela Carter (1940–1992)