½Ã½ºÅÛ ÇØÅ·

 1576, 1/79 ȸ¿ø°¡ÀÔ  ·Î±×ÀΠ 
   bigshott
   ·¹µåÇò9 ¹öÀü bof °ø°Ý ¹®ÀÇ µå¸³´Ï´Ù.

http://www.hackerschool.org/HS_Boards/zboard.php?AllArticle=true&no=1651 [º¹»ç]


¾È³çÇϼ¼¿ä~

·¹µåÇò9 ¿¡¼­ smp Ä¿³Î ÆÐÄ¡ ÇÑ °ÍÀä~

¾Æ·¡Ã³·³ ÀÌÀü¿¡ À¯¸íÇÏ´ø do_brk bof °ø°ÝÀÌ µÇÁö ¾Ê½À´Ï´Ù.

[test@test test]$ uname -r
2.4.20-31.9smp
[test@test test]$ cat /proc/version
Linux version 2.4.20-31.9smp
[test@test test]$ ./r
[-] Unable to change page protection: Cannot allocate memory
[-] Unable to exit, entering neverending loop.

Ȥ½Ã ·¹µåÇò9 ¿¡¼­ °¡´ÉÇÑ bof °ø°ÝÀÌ ÀÖÀ»±î¿ä?

¿©·¯°¡Áö ¹æ¹ýÀ¸·Î µµÀüÇØ ºÃÁö¸¸ °è¼Ó ½ÇÆÐ ÇÏ°í ÀÖ½À´Ï´Ù.

±×³É ½ºÅà ret ¿¡ ÇÔ¼ö ¿¬¼ÓÀ¸·Îµµ Çغ¸°í nopµµ Å¿öº¸°í ÇغýÀ´Ï´Ù.

Ȥ½Ã³ª Çؼ­ eggshellµµ ÇغÃÁö¸¸ ¾ÈµÇ³×¿ä~

°í¼ö´Ôµé Á¶¾ð Àڷᳪ Á¶¾ð Á» ºÎŹµå¸³´Ï¤¿¤§.

¼ö°íÇϼ¼¿ä`
  Hit : 3496     Date : 2013/02/01 06:12