Common security vulnerabilities
So what are the common security vulnerabilities, a professional programmer today should be prepared to face and mitigate during the course of their career? Looking at the available literature, these can be organized into a few specific categories:
Overflow errors: These include the popular and often abused buffer overflow errors, and the lesser known but still vulnerable arithmetic or integer overflow errors:
The buffer overflow: The buffer overflows are produced by programming errors that allow an application to write past the end or beginning of a buffer. The buffer overflows allow attackers to take control over systems by gaining access to the applications stack or heap memory by carefully crafted attack data.
The integer or arithmetic overflow: These errors occur when an arithmetic or mathematical operation on integers produces a result that is too large for the maximum size of the type used to store it.
Integer overflows can create security vulnerabilities...
