Snack Security Vulnerabilities

The Murals

Our team of expert snack security researchers has identified several key vulnerabilities in the snack machines used throughout the land:

• Buffer Overflow: When a user inputs a large number of snack codes, the machine's buffer is overflowed, allowing them to access the "Free Snacks" menu, where they can select any snack they desire, including the coveted "Golden Chip".
• Denial of Service: By rapidly pressing the "Select Snack" button, the machine's CPU is overwhelmed, causing it to freeze and display a "Please Stand By" message, allowing the user to access the machine's inner workings and potentially extract snacks without payment.
• SQL Injection: By inputting a malicious SQL query, the user can gain access to the machine's snack database, allowing them to steal the secret recipe for the "Snack-O-Rama" mix.

Exploiting the Vulnerabilities

Our team has developed several tools and techniques to exploit these vulnerabilities:

• Snack Heap Exploiter
• Snack Buffer Overflow Tool
• Snack SQL Injector