Scary program overflow

xiaoxiao2021-03-06  120

The general overflow method is:

1. Determine the positioning return to the store;

2. SHELLCODE is written;

3. JMP ESP address. Hey! Thanks to the public address 0x7ffa4512 provided by Lion Big Brother (pay tribute to lion);

A very simple test program to see this program.

Buffer overflow:

#include

#include

Char name [] = "abcdefghi";

Main () {char Output [8]; strcput (output, name);

For (int i = 0; i <8 && output [i]; i ) Printf ("// 0x% x / n", OUTPUT [I]); Return 0;}

Different results can be generated when changing the length of the array name []. For example, when the length of Name [] exceeds 8 characters, you can inspire a buffer overflow!

But I don't understand, I have said something about what is shallow things, I don't understand very much. I originally want to learn a debug compilation in this summer, because some other reasons are delayed, so I have some things now. blur. What high address, ground address, confused, but I still have to understand these! After all, it is learning! Hey! When do you have to learn! Always learn, learn to be old!

Reference: How to write your own buffer overflow utilization program? Http://www.xfocus.net/other/hkjx/exploithowto_part1_linux.txt

http://pay500.com/study/s12545.htm

转载请注明原文地址:https://www.9cbs.com/read-125723.html

New Post(0)