RE: buffer overflow question

From: Dr Anish.M (anish.m@californiadigital.com)
Date: 12/06/01


From: "Dr Anish.M" <anish.m@californiadigital.com>
To: "Richard Masoner" <richardm@masoner.net>, "*jnf " <generic@techie.com>
Date: Thu, 6 Dec 2001 18:00:16 +0530


hope this helps ....
http://www.hhp-programming.net/yourpapers.html
http://www.siliconinc.net/hack/papers/basicoverflows/index.html
http://www.siliconinc.net/hack/papers/advancedoverflows/index.html
http://www.cultdeadcow.com/cDc_files/cDc-351/
http://www.windowsitsecurity.com/Articles/Index.cfm?ArticleID=9199
http://community.core-sdi.com/~juliano/
>if anyone knows any local exploits for the
>linux os (x86) that would follow what one could
>consider to be a 'text-book- scenario of one,

Speaking of text-books, _Building Secure Software_ by Viega and McGraw (of
the Shmoo Group and Cigital, respectively) is an excellent text from a
software design viewpoint. It includes a step-by-step walk through of
creating a UNIX buffer overflow exploit.

Richard Masoner