Buffer
Overflow Causes. ©2002, Jedidiah R. Crandall, Susan L. Gerhart, Jan G.
Hogle.
http://sfsecurity.pr.erau.edu
Formatting and logical errors – Recommendations.
•Always test a variety of inputs to make sure the program behavior is what
you expect.
•Code inspection is likely to catch buffer overflow errors that testing
doesn’t.
•Assume that ALL buffer overflows are security problems.
•Don’t assume that all buffer overflows are caused by long strings.