Robert Graham Buffer Quotations

We logged into an AOL server using an AOL Messenger and did a capture of the traffic between a server and a client. During the log-in process I found what indeed was a buffer overflow exploit,

When an AOL client connects, the AOL server sends back more information than they expect, ... The buffer that they reserved was 256 bytes. For that buffer, what AOL sends is 256 bytes and then 24 bytes extra ... to overflow it.