Writer infomation This blog is a report for Infomation Security course's project, written by: Nguyễn Nhật Minh Khôi - Student ID: 19120020 - Ho Chi Minh University of Science Vũ Hữu Nghĩa - Student ID: 19120028 - Ho Chi Minh University of Science Bạch Ngọc Minh Tâm - Student ID: 19120034 - Ho Chi Minh University of Science Đỗ Nguyễn Duy Hoàng - Student ID: 19120077 - Ho Chi Minh University of Science Introduction Software security is a broad field including all vulnerability related to software. There are common problems such as SQL Injection, OS command injection, buffer overflow, etc. Consequently, cover all of those topic in only one article is impossible, here we only focus on one main object that often cause problem for our system, it is Set-UID program. We will learn how it can be exploited like buffer overflow, race condition, format string, shellshock, etc. as well as how to counter against these attacks.

Người viết: Nguyễn Nhật Minh Khôi - Đại học Khoa học Tự nhiên - ĐHQG-HCM Reviewer: Trần Quang Lộc - ITMO University Hồ Ngọc Vĩnh Phát - Đại học Khoa học Tự nhiên - ĐHQG-HCM Nguyễn Phú Bình - THPT chuyên Hùng Vương, Bình Dương Nguyễn Hoàng Vũ - THPT chuyên Phan Bội Châu, Nghệ An Tham khảo: cp-algorithm