Vulnerability Development mailing list archives

Previous By Date Next
Previous By Thread Next

Re: buffer overflow - fundamentals

From: erasor <erasor () ERASORS NET>
Date: Tue, 6 Feb 2001 21:00:46 -0800
best bet would be to look at the phrack artical:

http://www.securityfocus.com/archive/1/5667

"Smashing The Stack For Fun And Profit"
Phrack Artical 49
Volume Seven, Issue Forty-Nine
File 14 of 16
by Aleph One


----- Original Message -----
From: "adeon" <adeon () DINO OPEN NET PL>
To: <VULN-DEV () SECURITYFOCUS COM>
Sent: Monday, February 05, 2001 11:47 AM
Subject: buffer overflow - fundamentals


: Hello ,
:
:   I've wondered (I'm beginner) on how to make a buffer overflow
:   exploit. So, let's say that i've got suid program (compiled) and owned
:   by root:
:
:   file://----- cut here
:   #include <stdio.h>
:
:   char buff[2];
:
:   int main()
:   {
:         printf("Enter some letters:");
:         scanf("%s",buff);
:         return 0;
:   }
:   file://---- cut here
:
:   Can anyone explain me how to make an exploit for it? Can anyone give
:   some example of exploits?
:
:
: --
: Best regards,
:  adeon                          mailto:adeon () dino open net pl
:
Previous By Date Next
Previous By Thread Next

Current thread: