|
|
|
|
|
|
|
|
|
|
|
|
|
1574, 6/79 |
|
tkakr7458 | |||||||
format string bug + got overwite | |||||||
http://www.hackerschool.org/HS_Boards/zboard.php?id=QNA_system&no=1864 [º¹»ç]
Hit : 2377 Date : 2017/04/19 08:28
|
|||||||
ÇØÄð·¯ | ÀÌ ¹®Á¦ ÀÚüÀÇ Àǵµ´Â hello¸¦ Çѹø¸¸ È£ÃâÇ϶õ°Çµ¥, hello¿¡ _exitÀÌ ÀÖ¾î¼ ¾îÂ÷ÇÇ hello°£´ÙÀ½¿¡ Á¾·áÇÏ°ÚÁö¸¸ ¸¸¾à¿¡ ¾ø´Â »óȲ¿¡¼ ¿¬¼ÓÇؼ È£ÃâÇÏ´Â ¹æ¹ýÀº ½ºÅÃÀ» µ¤¾î¾ß ÇÕ´Ï´Ù exitÇÔ¼öÀÇ GOT¸¦ ÀÎÀÚ 1À» ¹Þ¾Æµµ Á¤»óÁøÇàÇÏ´Â ÇÔ¼ö ¿¹¸¦µé¾î execve·Î µ¤°í(execve´Â ÀÎÀÚ°¡ À߸øµÇµµ ÇÁ·Î±×·¥ÀÌ Á¾·áµÇÁö ¾Ê½À´Ï´Ù) ±×´ÙÀ½¿¡ sfpÀÇ Æ÷ÀÎÅ͸¦ ã½À´Ï´Ù, Áï mainÇÔ¼öÀÇ sfp¸¦ vulnÇÔ¼öÀÇ sfp°¡ °¡¸£Å°°í ÀÖÀ¸´Ï vulnÇÔ¼öÀÇ sfp¿¡ %nÀ¸·Î ÁÖ¼Ò¸¦ µ¤¾î¼ mainÇÔ¼öÀÇ retºÎÅÍ Âß ÆäÀ̷ε带 fsb·Î µ¤À¸¸é fsb·Îµµ call chainingÀ» ÇÒ ¼ö ÀÖ½À´Ï´Ù |
2017/04/20 | |
ÇØÄð·¯ | http://www.hackerschool.org/Sub_Html/HS_Posting/?uid=38 | 2017/04/20 | |
tkakr7458 | °¨»çÇÕ´Ï´Ù. ¤Ð¤Ð | 2017/04/20 | |
|
|