Debugging recent iis asp overflow

["Gary O'leary-Steele" <GaryO () Sec-1 com>]

Hello,

I am relatively new to buffer overflow coding and looking for a debugger
which can assist me in writing exploit code for the .asp buffer overflow
(discovered by eeye). I currently use Microsoft Visual C++ (97) which has
worked fine in the past. However in this particular instance hitting cancel
when access violation occurs does not open the debugging console. I presume
this is due to the fact the NT/2000 kernel kills the process (dllhost.exe)
before the C++ debugger can do its job.

Anyone done any work on this yet who can help me out?

Thanks in advance.
Gary O'leary-Steele


----------------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:
https://alerts.securityfocus.com/