The idea is pretty straightforward: Insert some attack code (for example, code that invokes a shell) somewhere and overwrite the stack in such a way that control gets passed to the attack code.

这种想法是相当直接的︰在某处汇入一些攻击程式码（例如，呼叫 shell 的程式码）并以将控制传递给攻击程式码的方式来覆写堆叠。

youdao

Blind SQL injection attacks are a well know and recognized form of code injection attack, but there are many other forms, some not so well documented or understood.

SQL盲注攻击是一种为人熟知的代码注入攻击形式，但是也有很多其他形式，有些尚未得到很好的记载和了解。

youdao

When researchers look for malware and attack vectors, the tendency is to look for vulnerabilities in portals or code.

当研究人员寻找恶意软件和攻击的载体时，他们往往会寻找接口或代码中的漏洞。

youdao

This tactic fails too often because criminals are adept at obfuscating their attack code, allowing their activity to remain undetected for long periods of time.

FORBES: To Stop Cybercrime: Understand Crime Logic, And Adapt

Like most malware attacks, there are clues as to its origin - however security experts warn that any calling cards found within the attack's code could in fact be an attempt to throw investigators off the real scent.

BBC: 'Red October' cyber-attack found by Russian researchers

The average malware has about 175 lines of code, which can attack defense software using between 5 million and 10 million lines of code.

FORBES: Cyberattacks: Not Just Online, Anymore