Testing for Buffer Overflow

From OWASP

OWASP Testing Guide v3 Table of Contents

This is a draft of a section of the new Testing Guide v3. For a stable version, please download the OWASP Testing Guide v2 here.

Related Security Activities

Description of Buffer Overflow

See the OWASP article on Buffer Overflow Attacks.

See the OWASP article on Buffer Overflow Vulnerabilities.

How to Avoid Buffer Overflow Vulnerabilities

See the OWASP Development Guide article on how to Avoid Buffer Overflow Vulnerabilities.

How to Review Code for Buffer Overflow Vulnerabilities

See the OWASP Code Review Guide article on how to Review Code for Buffer Overruns and Overflows Vulnerabilities.

What's buffer overflow?

To find out more about buffer overflow vulnerabilities, please go to Buffer Overflow pages.

How to test for buffer overflow vulnerabilities?

Different types of buffer overflow vulnerabilities have different testing methods. Here are the testing methods for the common types of buffer overflow vulnerabilities.

• Testing for heap overflow vulnerability
• Testing for stack overflow vulnerability
• Testing for format string vulnerability