How can a buffer overflow effect the OSI model?
How many layers of the OSI model can be affected by an buffer overflow vulnerability.
+2
A:
Any software may be vulnerable to buffer overflows, which means that the only truly immune layer is the Physical layer.
Ignacio Vazquez-Abrams
2009-12-29 08:29:03
You can attempt to abuse the hardware and eventually break it.
monksy
2009-12-29 08:50:14
10A on a cat 5 cable might be considered a buffer overflow :)
Jerome
2009-12-29 09:01:23
A:
Basically every layer but layer 1 can potentially be vulnerable to buffer overflow, since they all require software (embedded or not). Even layer 1 can involve software and thus be vulnerable.
The question is largely academic since the OSI Model is largely academic. For example, Ethernet implements layers 1 and 2 and TCP/IP uses a completely different model.
Schwern
2009-12-29 08:30:01
A:
The OSI model is not related to buffer overflows in any way. The former describes an abstract model how you should implement a network stack and which function goes into which layer, the latter is a form of vulnerability for real, existing software (as opposed to an abstract model).
If you're talking about an implementation, then probably all layers but the first one can be vulnerable (layer 1 defines the connectors, cabling, etc., i.e. the hardware outside the stack).
Aaron Digulla
2009-12-29 08:30:26
Actually, network implementations get hacked all the time. The application layer, layer 7 gets hacked the most.
Rook
2010-01-21 05:59:58