Systems and Security : Attacks, Threats, and Vulnerabilities
1.3 Application Attacks and Indicators
Replay attack - Session replays
A Replay Attack (also known as Session Replay) is a type of network security attack in which an attacker intercepts and records a valid communication session between two parties, and then later replays the recorded session to the receiving party in an attempt to impersonate one of the original parties.
This type of attack can be used to gain unauthorized access to sensitive information or resources, or to manipulate the behavior of a system. Replay attacks can occur in various communication protocols, including IP and TCP, and can be mitigated by using encryption, secure authentication mechanisms, or timestamps that prevent replayed sessions from being accepted by the receiving party.
Integer overflow
An Integer Overflow is a condition that occurs when a calculation results in a value that is outside the range of values that can be represented by an integer data type. In computer programming, integer data types are used to store whole numbers, and their range is limited by the number of bits used to represent them.
In an integer overflow situation, the result of a calculation is too large to be represented as an integer, and the excess bits are discarded. This can have unintended consequences and can lead to security vulnerabilities in software applications, especially if the calculations are used to control memory allocation or to check access control.
For example, an integer overflow can occur in a buffer overflow attack, where an attacker can cause a buffer to overflow by sending an input larger than the size of the buffer, causing the program to crash or to execute arbitrary code. To prevent integer overflows, software developers should use data types with larger ranges or perform explicit bounds checks on all integer values.