Re: buffer overflow(?) help

[Joakim Sandström <jode () TRIBALSTORM COM>]

Offcourse you can. If EIP or EBP at some point
reads their next call point from EBX or EDI you
can allways manipulate this.. and therefor it's
possible for you to get it to call/jmp whatever
to another location of your stuff in EBX/EDI. Though
all depends on how much stuff you can get into EBX/EDI
+ a miljon other things.. but why not if your'e lucky! :)

/JODE

----- Original Message -----
From: "cOsa nOstra" <c0sa_n0stra () YAHOO COM>
To: <VULN-DEV () SECURITYFOCUS COM>
Sent: Thursday, December 28, 2000 12:29 PM
Subject: buffer overflow(?) help


> Dear, Vuln-Dev
>
> Those anyone know if it is possible to write
> a stack based buffer-overflow, if you only
> can control EBX and EDI (not both at the same
> time -- EIP will remain mostly unchanged.)
>
> Yours truly,
> n0stra
>
> __________________________________________________
> Do You Yahoo!?
> Yahoo! Photos - Share your holiday photos online!
> http://photos.yahoo.com/