|
|
|
|
|
|
|
|
|
|
|
|
|
1574, 1/79 |
|
hackxx123 | |||||||
http://NULL | |||||||
pwnable.kr bof ¹®Á¦!!! | |||||||
http://www.hackerschool.org/HS_Boards/zboard.php?desc=asc&no=1950 [º¹»ç]
Hit : 2568 Date : 2018/12/12 12:09
|
|||||||
cd80 | ? ~ python2 -c 'print "\xbe\xba\xfe\xca"' | xxd - 00000000: beba feca 0a ..... ? ~ python3 -c 'print("\xbe\xba\xfe\xca")' | xxd - 00000000: c2be c2ba c3be c38a 0a ......... ? ~ À§ Â÷À̶§¹®¿¡ ¾ÈµÇ³ªº¸³×¿ä catÀ» ºÙ¿©ÁÖ´Â ÀÌÀ¯´Â catÀ» ±×³É ½ÇÇàÇغ¸¸é ➜ ~ strace -if /bin/cat 2>&1 | grep -E "read|write" [00007f384b2b2da4] read(3, "\177ELF\2\1\1\3\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0\260\34\2\0\0\0\0\0"..., 832) = 832 hi [00007f384afb5081] read(0, "hi\n", 131072) = 3 [00007f384afb5154] write(1, "hi\n", 3hi bye [00007f384afb5081] read(0, "bye\n", 131072) = 4 [00007f384afb5154] write(1, "bye\n", 4bye ÀÔ·ÂÇÑ°É ±×´ë·Î Ãâ·ÂÇÏ°í cat) °ú nc »çÀÌÀÇ ÆÄÀÌÇÁ´Â ÆÄÀÌÇÁ ¿ÞÆíÀÇ stdoutÀ» ¿À¸¥ÆíÀÇ stdinÀ¸·Î ³Ö¾îÁÖ´Â ¿ªÇÒÀ̱⠶§¹®¿¡ ¾Õ¿¡¼ Ãâ·ÂÇÑ°ÍÀÌ bofÀÇ gets¿¡ µé¾î°¡ ½©ÀÌ ½ÇÇàµÇ°í ±× ÈÄ ¸í·ÉÀ» Ä¡±â À§ÇØ catÀ» ºÙ¿©¼ ÀÔ·ÂÇϴ°͵éÀÌ ½©·Î Àü´ÞµÉ ¼ö ÀÖµµ·Ï ÇϱâÀ§ÇØ catÀ» ºÙÀÔ´Ï´Ù |
2018/12/12 | |
DOP4MIN3 | p_str = {Ãâ·Â ¹®ÀÚ¿}.decode('utf-8') | 2018/12/23 | |
|
|