Re: [Vuln-dev Challenge] Challenge #2

From: anon (ex0cet_at_l8nite.net)
Date: 05/24/03

  • Next message: spacewalker: "Re: [Vuln-dev Challenge] Challenge #2" 
    To: vuln-dev@securityfocus.com
Date: 24 May 2003 16:37:18 +0300

    I wrote a quick and lame POC :P
    Well the other way is probably a ret-into-libc since you're not gonna be
    able to execute your shellcode, but I am too bored to write it now.
    (btw. the first challenge was better than this (even if it was already
    well documented aswell..)

  • Next message: spacewalker: "Re: [Vuln-dev Challenge] Challenge #2"

    Relevant Pages

    • The joys of impurity (was: MOSDEF, InlineEgg)
      ... your shellcode;)? ... in such case one cannot simply execute ... It is easily fixable in the second stage itself ... Shelix: got token length 2 ...
      (Vuln-Dev)
    • The joys of impurity (was: MOSDEF, InlineEgg)
      ... your shellcode;)? ... in such case one cannot simply execute ... It is easily fixable in the second stage itself ... Shelix: got token length 2 ...
      (Bugtraq)
    • Re: DEFCON 16 and Hacking OpenVMS
      ... It is possible to execute shellcode stored in logicals, ... Since the PC is controlled in the CLI bug we simply jump to the ...
      (comp.os.vms)
    • Re: DEFCON 16 and Hacking OpenVMS
      ... placing some shellcode after the overflow. ... It is possible to execute shellcode stored in logicals, ...
      (comp.os.vms)
    • Re: Doubts in shellcode !?
      ... |> I'm reading a tutorial about shellcode, ... Because it doesn't execute /bin/sh directly, ... It is assembler, not machine code. ... such things as offsets are filled in by the compiler. ...
      (comp.security.unix)