Metasploit mailing list archives

A little offtopic: Get EIP

From: warl0ck at metaeye.org (Pranay Kanwar)
Date: Tue, 26 Jun 2007 18:15:20 +0530

Hi,

First the *db* is not a part of gcc inline assembly (gas) :).
use the .string directive.

.string "DD"

Regarding the offset thing, we cannot mix 16 bit and 32 bit
call addresses, in 32 bit code automatically the the 16 bit call
will be converted to 32 bit. So when one does "call 0x0" the call
instruction is relative encoded as 32 bit signed integer hence explains
the weird 0xffffffc address, the offset is calculated from starting of
the current function/frame.

gas manual: http://www.gnu.org/software/binutils/manual/gas-2.9.1/html_mono/as.html

Regards

warl0ck // MSG
http://www.metaeye.org

Current thread:

A little offtopic: Get EIP Clemens Kolbitsch (Jun 25)
- A little offtopic: Get EIP Clemens Kolbitsch (Jun 25)
- A little offtopic: Get EIP Pranay Kanwar (Jun 26)
  - A little offtopic: Get EIP Clemens Kolbitsch (Jun 26)
  - A little offtopic: Get EIP Clemens Kolbitsch (Jun 26)
    - A little offtopic: Get EIP Jerome Athias (Jun 26)
    - A little offtopic: Get EIP Clemens Kolbitsch (Jun 26)
    - A little offtopic: Get EIP Clemens Kolbitsch (Jun 26)
    - A little offtopic: Get EIP Pranay Kanwar (Jun 26)
    - A little offtopic: Get EIP Pusscat (Jun 26)
    - A little offtopic: Get EIP Clemens Kolbitsch (Jun 26)