Vulnerability Development mailing list archives

Previous By Date Next
Previous By Thread Next

Re: buffer overflow - fundamentals

From: maillist <maillist () GO RO>
Date: Wed, 7 Feb 2001 03:58:47 +0200
Hi.
You can check the

http://packetstorm.securify.com/docs/infosec/buffer-overflows/overflow_tutor
ial.txt
for a tutorial about writing buffer-overflows exploits.

----- Original Message -----
From: "adeon" <adeon () DINO OPEN NET PL>
To: <VULN-DEV () SECURITYFOCUS COM>
Sent: Monday, February 05, 2001 9:47 PM
Subject: buffer overflow - fundamentals



Hello ,

  I've wondered (I'm beginner) on how to make a buffer overflow
  exploit. So, let's say that i've got suid program (compiled) and owned
  by root:

  file://----- cut here
  #include <stdio.h>

  char buff[2];

  int main()
  {
        printf("Enter some letters:");
        scanf("%s",buff);
        return 0;
  }
  file://---- cut here

  Can anyone explain me how to make an exploit for it? Can anyone give
  some example of exploits?


--
Best regards,
 adeon                          mailto:adeon () dino open net pl
Previous By Date Next
Previous By Thread Next

Current thread: