Vulnerability Development mailing list archives

regarding phrack49's stack smashing tutorial

From: ch () WESTEND COM (Christian Hammers)
Date: Sat, 13 May 2000 20:56:41 +0200


Hello list

I'm learning about stack overflows from Aleph's article in Phrack #49.

Now I wonder about the following sentences:
        "The answer is that for every program the stack will start at
        the same address."
Why does it and more specific *where*? I wrote some test programs and
saw that is always 0xbffff6c6 +- 0xff. But it changes sometimes.
What is so special about this 0xbffffffff address and by the way
this address never fits into my 64M memory.... !

If anybody know other documents which explains buffer overflows I would
appreciate any information.

thanks,

 -christian-

--
Linux - the choice of the GNU generation.          Join the Debian Project
                                                     http://www.debian.org
Christian Hammers * Oberer Heidweg 35 * D-52477 Alsdorf * Tel: 02404-25624
50 3C 52 26 3E 52 E7 20  D2 A1 F5 16 C4 C9 D4 D3  1024/925BCB55 1997/11/01

Current thread:

Re: WSCRIPT.EXE , CSCRIPT.EXE replacement for *.vbs Knud Erik Højgaard (Apr 14)
- <Possible follow-ups>
- Re: WSCRIPT.EXE , CSCRIPT.EXE replacement for *.vbs Harmer, Mike (May 12)
  - regarding phrack49's stack smashing tutorial Christian Hammers (May 13)
    - Re: regarding phrack49's stack smashing tutorial Precious Roy (May 13)
    - Re: regarding phrack49's stack smashing tutorial Bluefish (May 13)
    - QPOP2.5* exploit ?? Ryan Sweat (May 14)
    - Re: QPOP2.5* exploit ?? H D Moore (May 14)
    - Re: QPOP2.5* exploit ?? jms (May 13)
    - Napster Fix optik (May 14)
    - Re: QPOP2.5* exploit ?? Maurycy Prodeus (May 15)
    - Re: QPOP2.5* exploit ?? jms (May 14)
    - Re: QPOP2.5* exploit ?? Eric LeBlanc (May 15)
    - hi sparc qpop info sp00n () GMX DE (May 14)

(Thread continues...)