How would you define Buffer Overflow to a Non-Technical Person?
1592 views 
This was probably the most difficult question I was asked during an interview. Its super-easy to describe buffer overflow to programmers, developers but how would you make a non-technical person understand it ?
I had to stop and think for a minute, before answering this one ; so take your time :D
If you don't need to go into
If you don't need to go into detail, it's a programming flaw that can be exploited to improperly processes input and run code of the attacker's choosing.
My simple buffer overflow example
Thats a good reply Mr. `anonymous` , however i would try to explain the details of buffer overflow with a simple real life example ...
Lets say, you are sitting in office doing some work and a fellow colleague comes to your desk. You ask, "How are you doing?" thinking that you will get a short reply "Great! how about you." (expected input) and the whole conversation generally takes a minute .
However, you get a lengthy half hour lecture on "how everything sucks, this ain't working that ain't working and the project deadline is coming up". Now this was an unexpected reply to your simple question and you lost time which you set aside for your own work (buffer overflow).
After listening to your colleague problems, you went with him to solve his problem (buffer overflow took control of program) or you went back to work but now don't have enough time to finish it off (program crash).
Very good break down of Buffer Overflow
Very good break down of buffer overflow by Param.
You can also use the highway analogy…where a highway is built to withhold so many cars. When there are excessive amount of cars (Data) on the highway (memory or bus), it will overload the highway causing it to slowdown or a standstill.
Post new comment