Vulnerability Development mailing list archives

Re: buffer overflow - fundamentals

From: "Robert G. Ferrell" <root () rgfsparc cr usgs gov>
Date: Wed, 7 Feb 2001 11:15:47 -0600

best bet would be to look at the phrack artical:

http://www.securityfocus.com/archive/1/5667

"Smashing The Stack For Fun And Profit"
Phrack Artical 49


And once you've absorbed all that, you might try looking at

http://www.securityfocus.com/data/library/advanced.txt

"Advanced Buffer Overflow Exploit" by Taeho Oh.
But I should warn you--this isn't a paper for
casual reading.  It takes a decent familiarity with assembly
and gdb to really get anything out of it.

Cheers,

RGF

Robert G. Ferrell, CISSP
========================================
 Who goeth without humor goeth unarmed.
========================================

Current thread:

buffer overflow - fundamentals adeon (Feb 06)
- Re: buffer overflow - fundamentals erasor (Feb 06)
- Re: buffer overflow - fundamentals maillist (Feb 06)
- Re: buffer overflow - fundamentals visi0n (Feb 06)
  - Re: buffer overflow - fundamentals honoriak (Feb 07)
    - Re: buffer overflow - fundamentals rpc (Feb 08)
    - Re: buffer overflow - fundamentals Larry W. Cashdollar (Feb 08)
- Re: buffer overflow - fundamentals Rasta C. Shell (Feb 07)
- Re: buffer overflow - fundamentals LV (Feb 07)
- <Possible follow-ups>
- Re: buffer overflow - fundamentals Robert G. Ferrell (Feb 07)
- Re: buffer overflow - fundamentals gregory duchemin (Feb 08)
  - Re: buffer overflow - fundamentals visi0n (Feb 08)
- Re: buffer overflow - fundamentals honoriak (Feb 08)
- Re: buffer overflow - fundamentals jknoxville (Feb 08)