Vulnerability Development mailing list archives

Previous By Date Next
Previous By Thread Next

Re: buffer overflow - fundamentals

From: "Rasta C. Shell" <rasta () RSHELL ORG>
Date: Wed, 7 Feb 2001 12:14:26 +0200
Join #shellcode on EFnet and /msg dogfight .docs --help. This bot is
holding 21 documents on buffer overflows, shellcode writing technics
and format bug attacks. All this documents are going to be soon on
www.rshell.org.


adeon <adeon () dino open net pl> wrote:

Hello ,

  I've wondered (I'm beginner) on how to make a buffer overflow
  exploit. So, let's say that i've got suid program (compiled) and owned
  by root:

  //----- cut here
  #include <stdio.h>

  char buff[2];

  int main()
  {
        printf("Enter some letters:");
        scanf("%s",buff);
        return 0;
  }
  //---- cut here

  Can anyone explain me how to make an exploit for it? Can anyone give
  some example of exploits?


--
Best regards,
 adeon                          mailto:adeon () dino open net pl


--
Join #shellcode on EFnet.
rasta () rshell org
Previous By Date Next
Previous By Thread Next

Current thread: