Vulnerabilities
Integer Overflow
Also known as: Integer wraparound
Definition
A bug where an arithmetic operation produces a value outside the representable range of its integer type, wrapping or truncating in security-critical ways.
Examples
- CVE-2002-0639 (OpenSSH challenge-response) — integer overflow leading to heap corruption.
- CVE-2018-9568 (Android WiFi) — integer overflow in 802.11 frame handling.
Related terms
Buffer Overflow
A memory-safety flaw where a program writes past the end of an allocated buffer, corrupting adjacent memory and often enabling code execution.
Heap Overflow
A buffer overflow that occurs in dynamically allocated memory, often corrupting allocator metadata, function pointers, or object virtual tables.
Memory Corruption
An umbrella term for vulnerabilities where a program writes outside the bounds of intended memory, undermining type-safety, control flow, or data integrity.
Secure Coding
Secure Coding — definition coming soon.
Fuzz Testing
An automated testing technique that feeds a program large amounts of malformed, random or unexpected input to uncover crashes, memory corruption and security vulnerabilities.
Vulnerability
A weakness in a system, application, or process that an attacker can exploit to violate confidentiality, integrity, or availability.