Penetration Testing mailing list archives
Debugging recent iis asp overflow
From: "Gary O'leary-Steele" <GaryO () Sec-1 com>
Date: Wed, 17 Apr 2002 12:33:37 +0100
Hello, I am relatively new to buffer overflow coding and looking for a debugger which can assist me in writing exploit code for the .asp buffer overflow (discovered by eeye). I currently use Microsoft Visual C++ (97) which has worked fine in the past. However in this particular instance hitting cancel when access violation occurs does not open the debugging console. I presume this is due to the fact the NT/2000 kernel kills the process (dllhost.exe) before the C++ debugger can do its job. Anyone done any work on this yet who can help me out? Thanks in advance. Gary O'leary-Steele ---------------------------------------------------------------------------- This list is provided by the SecurityFocus Security Intelligence Alert (SIA) Service. For more information on SecurityFocus' SIA service which automatically alerts you to the latest security vulnerabilities please see: https://alerts.securityfocus.com/
Current thread:
- Debugging recent iis asp overflow Gary O'leary-Steele (Apr 17)