From Missingno to Heartbleed: Buffer Exploits and Buffer Overflows

Tom Scott

Додати в
- Мій плейлист
- Переглянути пізніше
Поділитися

Поділитися

Вставка

Розмір відео:

Показувати елементи керування програвачем

Автоматичне відтворення

Автоповтор

Опубліковано 6 жов 2024
Buffer exploits are one of the basic bugs of computer science. They're responsible for glitches in games, for all sorts of viruses and exploits, and any number of technical disasters. Here's the basics of how they work, and a non-technical breakdown of Heartbleed, this week's rather startling attack.
Наука та технологія

КОМЕНТАРІ • 857

@SparkySywer 8 років тому ⁺⁶¹³⁶
That smile... I think Tom put it there.
@luarn9176 6 років тому ⁺²⁰¹
Exactly what I thought
@ErikDaGreat 5 років тому ⁺²²⁷
that smile was very creepy
@sugarrhodestheunitedstateo7777 5 років тому ⁺⁴⁵
SparkySywer It’s a little late to worry about that. Just smile & wave. 🤪 lulz indeed!
@aki_ingason3376 5 років тому ⁺¹¹
What smile
@yas8560 5 років тому ⁺¹
No it’s Robin Seggelman
@stanrogers5613 3 роки тому ⁺⁴⁵⁹
“If debugging is the process of removing bugs, then programming must be the process of putting them in.” - Edsger Dijkstra
@GNUGradyn 3 роки тому ⁺⁷⁰⁰
"the technical folks are going to be cringing"
network engineer here, this is actually an excellent explanation. well done tom
@mallorystrom7511 2 роки тому ⁺¹²
this is so wholesome! 1000% smiles over here
@Unbreakify 10 місяців тому
agreed@@mallorystrom7511
@badatcad 8 років тому ⁺³¹⁰⁸
your blue screen didn't fool me, I know mine look different in windows 10 because i've gotten two in the last 12 hours. ohgodsendhelp
@AbbeyB77 8 років тому ⁺⁹⁸
Run a hard backup of all your files now, because my old computer did that right before the CPU died a terrible death
@AbbeyB77 8 років тому ⁺⁴⁴
No, a CPU doesn't need backups but you can never be too careful that your hard drive might be what goes
@AbbeyB77 8 років тому ⁺⁶⁷
I'm not saying their CPU is dying, I'm saying that multiple blue screens of death is a sign of impending disaster, because that's what mine did
@CrizeR6772 8 років тому ⁺²⁴
actually, the last time the BSoD looked like this is Windows 98
@blockbros9299 7 років тому ⁺²
Oskar Martin try buying windows 7, it's only like $20
@mckennacisler01 9 років тому ⁺¹⁶⁵²
You know you should worry about your computer when someone in a UA-cam video fakes a low frame rate and you don't even notice it...
@glichking6812 3 роки тому ⁺⁹
...what?
@ananttiwari1337 3 роки тому ⁺⁴²
@@glichking6812 what do you mean? Mckenna was trying to say that their computer is so bad that they felt that the low frame rates were normal and thus, didn't notice it.
@thaias9654 3 роки тому ⁺⁴
Same but with my phone
@TheRamprage5 10 років тому ⁺¹³⁸⁹
THAT SMILE IT MUST HAVE BEEN TOM
@realcartoongirl 5 років тому ⁺¹⁵
is him
@iriscandy6377 4 роки тому ⁺²
What
@chandler1086 3 роки тому ⁺³
it was the NSA
@elementneon 2 роки тому ⁺¹¹¹
I was at Defcon 2 weeks ago, at a party, and ran into the security expert that discovered Heartbleed, got to spend quite a bit of time with him. It often surprises me how small a percentage of people that work in the security industry actually do most of the discovery work we hear about. While at these parties, it always the same 50-100 people that are present the entire time, even as the industry continues to explode in personnel numbers.
@oakeydokey2 8 років тому ⁺³⁵⁸⁷
i'm on linux and i fell for the bluescreen. damnit.
@theLuigiFan0007Productions 8 років тому ⁺⁹⁶
+oakeydokey
I also use Linux. If I had this video fullscreen I would have thought my GPU crashed and poked the reset switch.
Does that often enough since I'v been tweaking odd driver options to desperately try getting OpenGL working.
Screen goes blue and grey (occasionally a hint of pink and lime) smears when it does.
Yeah I know, I have to install the non generic drivers soon. I just hate reverse engineering and backporting ATi's code.
@CoffeeOnRails 8 років тому ⁺⁵²
Same here. I legit panicked but then laughed when it went back to Tom.
@TheMegalusDoomslayer 8 років тому ⁺⁴²
+oakeydokey Recommended fix: don't use full screen
@TheMegalusDoomslayer 8 років тому ⁺⁵¹
theLuigiFan0007
I rarely use full screen on my laptop. (I'm a computer junkie and I can't imagine not seeing an interface in front of me. It makes me nervous.) It just looked like a buffering issue to me until I saw the BSOD.
@theLuigiFan0007Productions 8 років тому ⁺⁶
Megalus Doomslayer
Pretty much the same here. Since I use Linux with the Enlightenment desktop, I set the dock to always be on top, and no application can cover it.
@ElegantEnsue 10 років тому ⁺⁵³⁰
Ahaha that smile at the end after he says "who put that there in the first place" it was almost guilty ;D
@Unknown-yd5tv 10 років тому ⁺⁷
:D
@produKtNZ 10 років тому ⁺²⁷⁶
I was quietly hoping Tom Scott put a secret message in the fake bluescreen, but all I got was "o¿ù³Ô"
You disappoint me Tom :D
@KangasniemiJerri 7 років тому ⁺⁵⁰
produKtNZ OE: 016F: BFF9B3D4 is actually an error code from Win ME. It's an exception (error) that was commonly associated with your graphics card drivers being bad, thus throwing an exception during rendering of certain graphical elements.
@_trupples 9 років тому ⁺¹⁰⁹⁴
That grin at the end xD
@TricksterRad 9 років тому ⁺³¹
Ioan Dragomir Well, he put it in :D, so why not. (I'm obviously kidding.)
@vikasbswami 9 років тому ⁺⁸
Ioan Dragomir I'm still laughing at that grin :D
@Quasihamster 8 років тому ⁺²⁸
+Ioan Dragomir As if he wanted to say, yeah right, that was ME, bitches!
@KhanggiTanka 8 років тому ⁺¹
+Ioan Dragomir asi f to say i did that
@TricksterRad 8 років тому ⁺²
Uhh, guys, I said the exact same thing, like half a year ago...
@prosincr 8 років тому ⁺⁴³⁴
I was on mobile, your blue screen doesn't fool me
@codygarland6365 8 років тому ⁺⁴³
The lag got me on mobile
@dubsy1026 8 років тому ⁺⁴
+Codaddict28 I didn't for me. it seemed so fake. my phone just stops when it happens
@TheSimonarne 8 років тому
i'm on linux and the windows bluescreens are different now for the newest versions
@martypines2321 8 років тому ⁺⁴
I was on Mac. And not in full screen.
I HAVE WON THE INTERNET!(not really...)
@TheSimonarne 8 років тому ⁺²
Marty Pines i would have installed linux on that machine and then I HAVE WON THE INTERNET with a mostly overpriced system running a free operative system that you can do basicly anygthing on
@notbobby125 10 років тому ⁺³¹²⁰
Gandhi was originally a nuke loving monster in Civilization because of an overflow error. In Civilization 2, Gandhi was programmed to be pacifist, so he had a "desire to use nukes" value of 1 out of 10. The game designers also decided that any AI Civs that adopted democracy would have their "desire to use nukes" value lowered by two. For all the other civs, this was fine, however, for Gandhi, it caused his "want to use nuke" value to "drop" to 255, turning him from a friend to a nuclear monster that desired nothing but to watch the world burn.
In Civilzations V, the game designers, in a nod to the glitch and the "Gandhi nuked me" memes, gave Gandhi a 12 out of 10 desire to use nukes, higher than anyone else in the game.
@jaclegonetwork 9 років тому ⁺²⁹¹
notbobby125 I was wondering why I kept getting nuked by gandhi
@sorg3ns 9 років тому ⁺⁶⁵
And those memes will probably be a while before they go away too haha xD Civilization 5 is awesome
@stensoft 9 років тому ⁺⁴⁰⁰
notbobby125 That's actually not buffer overflow but value overflow/underflow, it's a different type of error you can experience even in JavaScript or other buffer-overflow-safe languages (there's actually very small number of languages that are not susceptible to that and most of them are functional). Similar error in UFO: Enemy Unknown caused really experienced soldiers to have something like lateral sclerosis (their stats overflowed to very low values, way below novice soldiers).
@RylanEdlin 9 років тому ⁺³¹
+Jan Sten Adámek I imagine designing a programming language to avoid overflow errors would make it really inefficient.
@stensoft 9 років тому ⁺⁴⁶
Rylan Edlin Most functional languages are immune to overflows but yes, it can be pretty inefficient. C# is also immune to overflows but it throws an exception. This also brings some overhead. Moreover it's debatable how safe that actually it. It avoids the overflow but it does not avoid the logic error that lead to it and who knows if that does not just move the error to another place in the program's logic, eg. in C#, it usually crashes the program so it can be used for DoS attacks. There are also statically-verifiable languages where no error can happen but it is pain in the ass to program in those.
@ThomasGiles 10 років тому ⁺¹⁵⁷
Oh, Tom. You are the man. "Cockup before conspiracy" will live forever in my heart.
#CBCForever
@VoidKing666 3 роки тому ⁺⁵
CBC doesn’t mean what you think it means
@iirelu 10 років тому ⁺⁸⁴
Who put that bug there in the first place. Grab your pitchforks 'cause we're bringing out the ol' git blame.
@gwaur 10 років тому ⁺¹⁴
This video about Heartbleed was so much more understandable to me than the Computerphile video. From CP I just didn't gather what the whole heartbeat thing was at all, but you worked the way up there. Thank you, Tom.
@Mae_is_gae 8 років тому ⁺⁴⁵⁷
I really don't mind buffer overflow, at all. it gave me 128 master balls, so I see no issue!
@jayuppercase3398 4 роки тому ⁺²⁶
And all the rare candy 😈😈 everyone on level 100
@usualunusualkid7149 4 роки тому ⁺¹⁷
That's value underflow.
@tekayo63 3 роки тому
Hope you don't mind the Hall of Fame...
@redtachyon2718 2 роки тому ⁺¹
@@PyPylia When you encounter Missingno, the sprite decompression causes a buffer overflow and corrupts your Hall of Fame.
@ConstantDerivative 2 роки тому ⁺²
@@usualunusualkid7149 underflow**
@MisterSecurity702 8 років тому ⁺³¹¹
That smile at the end as it's fading to black though... Bwahahahahahahahaha
@jimpikles 8 років тому ⁺¹⁶¹⁰
I was disappointed by the lack of Pokemon in this video.
@joshuahadams 8 років тому ⁺³⁵
There was a screenshot that said "Wild "" M. Appears!".
@SKyrim190 8 років тому ⁺⁹⁷
+jimpikles I was expecting he would explain the Missigno bug in Pokemon...was disappointed...
@Alex_Off-Beat 8 років тому ⁺⁶⁶
+Luiz Sarchis It's the same principle, when you use the glitch to encounter Missingno. on the coast of Cinnabar Island the game goes to pick a random pokemon from the list of pokemon that can be encountered in that area. However the programmers never put in a list of random encounters for that certain area of Cinnabar Island so the game ends up reading some other data as encounter data (It actually ends up reading a part of memory that stores the players name) which causes things to happen that weren't expected.
@kondzior553 8 років тому ⁺¹⁴⁴
+Alex Golembeski Close, but not quite. The game never reads any different part of memory, it's that the part of memory in question contains something it normally doesn't. How this works exactly is: you go to Cinnabar Island and surf across the east coast. The programmers accidentally set this strip of water as being equivalent to grass. Water routes have no specific data related to wild grass encounters, so data that was in the section of the memory related to said encounters is never overwritten when entering the route and whatever was there before stays there.
That's where the classic "talking to the old man" part comes in. Because when you're being taught how to catch Pokemon the name of the character changes from yours to the Old Man's, yours has to be temporarily saved somewhere else. Since Viridian has no grass encounters, that section of memory is where the name is being written into. Normally it would've been overwritten as soon as you enter some route with grass encounters, but because you Fly directly to C. Island which, like Viridian City, has no grass, the data (currently your name), as stated before, stays where it was.
Here's the actual Missingno./M. part. You have your name saved to the grass encounters section of the memory. Fly from Viridian to C. Island, still no grass encounters, data stays where it was. Going from island to the shore, same story, data stays where it was AND, because we're now on a grass-like tile according to game's logic, we can encounter Pokemon with in-game values corresponding to wild encounters data or, in that case, characters in our name. Problem is, our name is 7 characters at max. Random encounters section reads up to 11th and because in most cases characters after 7th (or however long your name is) are blank, we get the buffer underflow-like scenario and an encounter with M. Pokemon at level 0. The Missingno. are a bit different since they are leftover data from removed Pokemon and don't appear because of blank data being where it shouldn't, but that another story :).
@feoranis26 7 років тому ⁺⁶
i was disappointed by the lack of ACE(arbitrary code execution) in this video.
@wangus 10 років тому ⁺⁶²
that sinister smile at the end... :)
@IceMetalPunk 10 років тому ⁺⁵⁷³
While I appreciate your paranoia, I think the better question is, "How the hell did they forget to check the length of the input?" I mean, alright, sure, we all make mistakes. But it's a security library; you'd think they'd be careful to sanitize and verify all input >_< .
@Binary10100 10 років тому ⁺⁶⁷
Yeah, unless they did, and then some malicious guy intentionally removed that check.
@JelmerBorst 10 років тому ⁺⁵⁵
Binary10100 But even then, that needs to go through revision you'd reckon
@lobaxx 10 років тому ⁺¹⁵¹
I haven't read the code myself, but from what I've heard from people who have, it's daunting spaghettified mess. Or to use their words, _"after a few hours, I wanted to stab my eyes out with a fork"_.
It's equal measures human error, and equal measures horrible, convoluted code base that let's these error go unnoticed for so long.
OpenSSL is in desperate need of an audit and a re-write.
@Skydmig 10 років тому ⁺⁵⁰
I think OpenSSL needs more support. As it is with all open source projects, they are only as strong as the number of eyes conveying the code.
@XeroOl 9 років тому ⁺¹⁶
The best question is: "Where's the next bug?"
@MaraK_dialmformara 10 років тому ⁺⁶⁶
That evil grin at the end...XD
@teharbitur7377 10 років тому ⁺⁴⁰
1:56 I totally started cursing at my internet connection.
Fucking genius :D
@IceMetalPunk 10 років тому ⁺⁴
I panicked more than that before I realized what happened. Tom Scott (or perhaps Brady)...you are evil.
*EDIT* Okay, not Brady, this isn't Computerphile after all...
@thephpjo 10 років тому ⁺¹¹
i was pissed, cause this was the first video in a time i watched using windows and for a second t thought it was going to crash. Until that bluescreen came up. We are not using XP anymore. Todays bluescreens have smileys on them
@ReasonerUK 10 років тому ⁺⁵⁸
Great video, love how you keep things simple yet are still so informative. More of this Tom!
@ReasonerUK 10 років тому
GameDevSPS oh hi there
@wolfbd5950 8 років тому ⁺⁴
Coming back to this 2 years later, and I still love the Cheshire Cat grin at the end.
@lockpickingparamedic2136 4 роки тому ⁺⁹
01:56 Because I'm from Germany I didn't get the joke with the glitchy Image until the Bluescreen. Our Interne is so shity that this is normal.
@luisdanielmesa 8 років тому ⁺¹⁰²
I remember this... I remember going out in pijamas driving like crazy down to my office to check the server... update (downgrade) OpenSSL, and recheck, then I had to change all my certificates the next day. #HappyTimes
@MelBrooksKA 8 років тому ⁺³⁴
+Luis Daniel Mesa Velasquez That sounds like a fun day of doing everything you didn't want to do
@eTheBlack 10 років тому ⁺⁷⁸
It was Tom all along!
@mt_xing 10 років тому ⁺²⁶
We totally need more of these! :)
@moradan81 3 роки тому ⁺³
Wow, I loved this video. My favorite part: that grin at the very end. Was scarier than all the horror movies I've ever watched in my entire life put together.
@mercentperrault 5 років тому ⁺³²
5:47
That smile at the end.............
It basically means...........
“You're screwed”.😁
@skellious 10 років тому ⁺⁴
Nice job, Tom! another great video! this certainly has been an interesting day. please do make more like this, computerphile doesn't film you often enough!
@DawwyDev 10 років тому ⁺¹³⁴
MissingNo is not a buffer overflow error. The technical side of the error is that different segments of memory have different roles attached to them depending on the part of the game you're in. For example the same part in memory that stores what pokemon are in certain routes also stores trainer data in battle (well probably not but that's just an example). For example the mew glitch works, because you cheat the game into thinking you're in battle while you're not, so other segments of memory are used for different things than normal. And this is an explanation how the old man missingno glitch works: When the old man in the virdian city shows you how to catch a pokemon, you see the battle from his perspective. To do that, the game does a temporary change to your trainer data, while storing the regular trainer data in an unused space - the wild pokemon data space and it doesn't clear it from there. That would be normally no problem, as entering any region with wild pokemon will replace the data. The glitch happens, because shore in cinnabar is coded as place where you can fight wild pokemon. But the Cinnabar City itself has no wild pokemon data so it's not loaded. That means that this little part of the map will use any wild pokemon data provided in memory. Normally it's the last place you visited (neat trick for easy safari zone pokemon in R/B ) but if you have trainer data in there the game will try to make sense of it as wild pokemon data (both are stored in hexadecimals after all). This is why pokemon outside of the regular 151 show up. This is not a buffer overflow because nobody tries to put input longer than place provided for it.
@herrkatzegaming 4 роки тому ⁺¹⁹
Actually, The buffer overflow happens when it tries to write that you have caught that pokemon to the pokedex. Instead of it going to the pokedex, it goes to the amount of items in the 6th item slot.the "buffer" is the memory that the Pokedex occupies and the item data happens to be stored near the pokedex buffer. so there is actually a buffer overflow happening here
@kodekristian 4 роки тому ⁺¹⁴
@@herrkatzegaming It is not the capture flag that causes the item duplication, it is the encounter flag. You can run away or beat it, and you will still receive the item duplication. And from my understanding Dawwy is indeed correct that is is not a buffer overflow; it simply writes to the wrong location in the memory, rather than sending a value that spills over into neighboring data.
Also, the Pokémon shown in this video, contrary to what the title says, is in fact not MissingNo. It is 'M, a Pokémon that shares certain traits with MissingNo, but is in fact different in many aspects.
@giulianodepian-composer4517 4 роки тому ⁺⁹
@@kodekristian The hall of fame corruption though is caused by a buffer overflow because when it decompress the big glitched sprite, the game writes the sprite way pass the pokemon buffer
@ZT1ST 6 місяців тому
It's my understanding that MissingNo is a buffer overflow error in the pokemon generating step - it's reading pass the buffer of indicated Pokemon, because it doesn't know what to wrap around the valid space of Pokemon.
Ergo, "Missing Number", because the Pokemon doesn't have a number where it should be, and the image sprite is based on whatever it can read there, which is why sometimes the name and sprite change depending on which version you find.
@tangerinealarm 10 років тому ⁺²
Thank you. This has actually helped me understand what's been going in in these past few days.
@Sc2mapper117 10 років тому ⁺¹⁶²
You scared me with that fake crash! :D
@BanterEdits 10 років тому ⁺⁸
OMG yeah I thought that, too! omg that was fcking scary!
@Kevin15047 10 років тому ⁺¹¹
Me too. I had to go back and make sure it was part of the video.
@Penguin_Spy 7 років тому ⁺¹
Sc2mapper117 my wi-fi was crapping out right before he did the blue screen too.
@FlyingTurtleLP 10 років тому ⁺¹⁸
1:52 For nostalgic feeling. (Thanks...)
@Katianie9 9 років тому ⁺¹
Great explanation of Buffer overflow and general exploits.
@colemannugent 10 років тому ⁺⁴
Love videos like this. The more technical the better.
@itsr4yd946 5 років тому ⁺¹¹
"If you are using a high level language like JavaScript you don't have to worry about a buffer overflow"
WebKit exploit for Nintendo Switch...
@beesree39 3 роки тому
Still doesn't exist
@erictaylor5462 8 років тому ⁺⁴²
He who smelt it dealt it. Has Tom been a naughty boy?
@fullyverified7491 8 років тому
really?
@erictaylor5462 8 років тому ⁺¹
No, not really, It's a joke!
@fullyverified7491 8 років тому
Eric Taylor i know but...
@erictaylor5462 8 років тому
Fullyverified
Butt? I guess Tom HAS been naughty.
@fullyverified7491 8 років тому
Eric Taylor yes yes quite right
@agentdelta569 9 років тому ⁺¹⁵
that smile at the end
@pre-packaged_9692 5 років тому ⁺¹
You sir, just dropped my jaw with that last line. Well done.
@KhalilEstell 10 років тому ⁺³⁵
OMG! That ending! I love it! I need to show this to my conspiracy theory friends.
@PumatSol 10 років тому ⁺²¹
I had to make sure I wasn't on Computerphile for a second
@blenderpanzi 10 років тому ⁺⁵
I only noticed because of comments like yours.
@IceMetalPunk 10 років тому ⁺¹
Oh, wait, what? Hey, look at that, this ISN'T Computerphile. Totally didn't realize that.
@trigger7ff6 5 років тому ⁺¹
This is five years old and I think taht last line will never get old.
@ZT1ST 6 місяців тому
4 years since your comment, and XZ utils makes it stand out even more.
@StonyRC 10 років тому
Very nice explanation. Your closing thoughts also made me smile - like you, I'm not that paranoid but it's an interesting thought! Many thanks.
@JavierVegaPerry 10 років тому
As always, great video and also very fast, when i was just getting up to date with Heartbleed. Thanks!
@donaldangus9582 3 роки тому ⁺¹
Such a good explanation that the hardest bit to comprehend was a solitary tab on a browser window…
@adre2194 Рік тому ⁺⁴
Love that little grin at the end ahahaha
@Huntracony 10 років тому ⁺⁶
i loved the ending sentence :D and i wouldn't be surprised at all if the nsa just lost 95% of their data sources
@jeshweedleon3960 7 років тому ⁺¹⁷
"did someone notice it and not sat anything?"
3 years later we hear about the CIA doing just that...
@absent612 3 роки тому ⁺¹
oh, really?
@ano_nym 3 роки тому ⁺²
@@absent612 it was another bug, but that NSA kept quite about for 5 years until it was leaked. Called EternalBlue and is what made the ransomware attack back in 2017 possible.
@soulcatch 10 років тому
Thanks Brady. I just updated my BIOS before watching this video and the BSOD at 1:59 almost gave me a heart attack!
@SpringDivers 10 років тому ⁺¹
Another winner, Tom. Thanks much.
@Omni315 10 років тому ⁺¹⁵
Needs more missingno.
@nonchip 10 років тому ⁺⁶
as far as I remember, missingno wasn't a buffer exploit but a design fault temporarily storing the user's name at a location that's referenced as a pointer elsewhere, so you're not really overflowing data into RAM, but redirecting later pointer dereferencing.
@connorhorman 5 років тому
Kyra Zimmer The Item Duplication when you “See” Missingno. is a buffer overflow, its setting the high order bit of the 32nd byte of something a lot smaller then 32 bytes.
@NerothLoD 10 років тому
Hehe. Love the cheeky grin at the end, almost like you yourself know who put the bug there. Or even put it there yourself.
@EddyProca 10 років тому ⁺⁸⁴
I'm gonna go with The NSA for 200 Alex.
@andrewboz8990 10 років тому ⁺¹
Eddy Proca Only shitty websites were affected (Yahoo) and frankly dont care that Homophobic cunts might be exposed (Yahoo Answers)
@p00ky76 10 років тому ⁺¹⁸
Andrew Boz
open ssl is used by about 66% of the internet, sure, not all will be using the problem versions, but the problem has been there for 2 years, I'm pretty sure more than yahoo were effected.
@Kissaki0 10 років тому ⁺¹
***** Using it does not make you vulnerable yet. It was only an issue for specific 1.0.1 versions.
@p00ky76 10 років тому ⁺⁴
*****
turns out that the FBI were effected hehe
@theLuigiFan0007Productions 8 років тому
+Alexander Soloviev
So.... was the NSA spying on the FBI? XDDDDD
@polinanikulina Рік тому ⁺¹
The stressful bit is Tom waiving around an uncapped Sharpie
@HeartbleedBug 10 років тому ⁺¹
Thank you for posting this video.
@ChristofferOlofsson 10 років тому ⁺²
5:50, that smile! :D
Very well done video!
@glueee2621 8 років тому ⁺²⁰
Turn of events I've just experienced, Watched video - got tinfoil hat and went on to make many a conspiracy theory.
@SpringDivers 9 років тому
Excellent explanation and very interesting, Tom. Thanks.
@LapisDemon 10 років тому ⁺¹
Thanks Tom für the explanation!
@bennievaneeden2720 5 років тому ⁺⁴
I was waiting for him to come back on screen and say, "it was me, i put that bug there ;)"
@dak1st 10 років тому ⁺¹
It is a bit simple, but I didn't cringe. Well done explaining something rather complex in a way that is both understandable and still rather technically correct.
@jlcontarino 10 років тому
ohhhhh dude, this is a very dangerous exploit! thanks for the very clear and detailed explanation.
@jlcontarino 10 років тому
Did he say this bug's been in there for 2 years!?! A bug this significant? In a product used by millions of people? How is that possible?? Maybe he's not being so paranoid ...
@jeremysaklad6703 10 років тому ⁺¹
That smile is almost as terrifying as that of Cumberbatch’s Sherlock Holmes.
@cryjenshe 10 років тому ⁺²
As a retired firmware engineer I really enjoyed your explanation of the "feature" in OpenSSL that is causing everybody such headaches. And I really appreciate my former boss's comment that we could not use open source in our server's firmware, "It provides too much risk." (By the way, I did not work for CISCO.)
@adjectiveollie 2 роки тому
the smile at the end. it feels like this was just one convoluted movie trailer.
@over00lordunknown12 5 років тому
Wow. Back in 8th grade I watched this video, then again in 10th grade, now again in 12th grade, and only now after 5 years experience in programming did I actually understand it fully, and now I see why that is such a massive exploit.
@vasilivros4166 4 роки тому ⁺³
Is it really so paranoid to think that someone did find this bug, but was smart enough to exploit it on a small scale during those 2 years?
@angharadhafod 8 років тому ⁺¹
Yes, you do (want to get really paranoid).
The final thought had occurred to me well before you said it.
@keeganmaloney3440 10 років тому ⁺⁴
The dreaded BSOD has returned! RUNN!!
at least its the kind of friendly version that has the press key to continue thing
@randyhavard6084 2 роки тому
I wasn't worried at all till that devious smile at the end
@abanda3d 10 років тому ⁺¹
love these kind of videos .. remind me of u on computerphile, you should do more like these!!!!
@skalpathal 10 років тому ⁺³
I actually thought this was computerphile right up until I read your comment.
@ThatCowGuy 6 років тому
Nice touch with the crashing. Absolutely fell for it
@steevf 10 років тому ⁺¹¹
It was you!!! You put it there. :)
@Drupalista 10 років тому ⁺²
Tom, answering that creepy grin at the end, NSA did it. :-D
@RalphBromleyMadmanRB 10 років тому ⁺²
the issue is lack of developers at openSSL.
While overall openSSL is a good thing, it does have its flaws and this is one of them.
openSSL is a volunteer project so the best way to prevent this from happening again is to help contribute.
@AnirudhHN 10 років тому ⁺²
Sweet explanation.
@LetsDoRedstone 10 років тому
That smile at the end... However, this is a very good explanation, thanks, :)
@abrahammagnifico9538 10 років тому ⁺⁷
this man is fucking dangerous !! look at his smile at the end !
@Alaeriia 8 років тому ⁺³³
@cyancoyote7366 8 років тому
xDDDDDDDDDD
@ky5666 8 років тому
It's hexadecimal and binary. They're the best. :P
@cyancoyote7366 8 років тому
This somehow reminds me of this XKCD comic, this is my favourite one :D xkcd.com/505/
@DarklinkXXXX 7 років тому
Seriously though, LISP solved this buffer overflow problem a very long time ago.
@robertlinke2666 7 років тому
still depends if you give it hardcoded more then it can handle, but then you are just doing for it
@Stratelier 5 років тому
When you described the "buffer underflow", it's basically a buffer overflow except that it occurs while _reading_ from memory instead of when _writing_ to it.
@Zuzu-yp4qp 10 років тому ⁺¹⁴
Well, I'm glad I watched this on my Kindle instead of my Windows PC.
@brandontw01 10 років тому ⁺⁵
I run linux, so I just laughed at the fake error!
@TheTzann 10 років тому ⁺²
Brandon Wiker You can be happy about ShellShock then. ;)
@brandontw01 10 років тому
TheTzann I just watched that, and I was like ~_~
bummer.
I can use something other than bash, though it'll take learning. Any recommends?
@TheTzann 10 років тому
As long as you're using linux, you can't avoid bash... But update to the newest versions and you'll be fine.
@brandontw01 10 років тому
Oh.okay. I did just run a test and I don't seem to be vulnerable at the moment. Thank you.
@FiksIIanzO 8 років тому
Like the jumpscares. That's a good touch.
I'll go clean my trousers now I suppose.
@ProjSHiNKiROU 9 років тому ⁺²
There is a Wii exploit where you execute arbitrary code through buffer overflow in a pet horse's name in a Zelda game (the Twilight Hack). I guess it's easy to miss buffer overflow problems while auditing C and C++ code, and the developer assumed the savedata are always valid (and if invalid, the game crashes before starts).
It's funny because the buffer overflow comes from a horse's name. Next time I'm expecting SQL injection while answering a security question like "What's your pet's name?"
@dayforester 7 років тому
I think starting Project M for Brawl has something to do with that.
@stonedude1234 6 років тому ⁺¹
Whoever is making the names for these viruses/exploits should start naming rock bands and they'll make millions
@AndriyLinnyk 10 років тому ⁺¹
that was the creepiest smile at the end of the video.. lol when he said "who put the bug there in the first place?"
@Incognitus30 4 роки тому ⁺¹
That smile is gonna haunt my dreams
@NortelGeek 3 роки тому ⁺¹
Ah, the heartbeat reminds me of my days on IRC...
_Ping?_ ... _Pong!_
@deepspacemachines 10 років тому
That last question reminded me of an incident in a south american bank where a programmer modified the code of the banks ATMs just so that with a private code he could extract any amount of money from the machine.
The exploit went unnoticed until after the employee retired - and - some ATMs were missing aertain amounts of money
@samwilliams6679 10 років тому
Love this video like all of them, but found I learned a lot more in this one then most :D
@izxle 10 років тому
A technical explanation an missgno would be awesome
@Wolham 8 років тому
That ending was absolutely perfect.
@TheSkepticSkwerl 3 роки тому ⁺¹
I miss these videos
@tdawgmaster1729 8 років тому ⁺⁷⁹
Logic- Puts MISSINGNO in title -shows 'M encounter
@tdawgmaster1729 8 років тому ⁺³
No they aren't. They're completely different except for MISSINGNO's default sprite
@petergao6998 8 років тому
+Sagitarius04 That's also what he did when he wanted to stick in a little bit more.
@addstrat1207 8 років тому ⁺⁶
God. Practically unwatchable...
@guhh0782 3 роки тому ⁺¹
That last smile scared me...
@twinsunianlp7359 9 років тому
That smile at the end! Great video :)
@Untoldanimations 9 років тому ⁺²
Sick explained it quite well

Наступне

Автоматичне відтворення

Single Point of Failure: The (Fictional) Day Google Forgot To Check Passwords