AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |
Back to Blog
Xce esp10/20/2023 ![]() Now we will fuzz it and find the crash offset. So I thought we have to find a directory. After some reviewing, I could not find any credential. We have to find a binary file to find the offset and the addresses. Ok, we saw that somethings happened after 519 bytes. Here is the codes of my script: !#/usr/bin/pythonĬlient = socket.socket(socket.AF_INET, socket.SOCK_STREAM) I developed a basic python script for finding the approx value of crash offset of the app. So we found buffer overflow vulnerability. If it crashes this means there is stack buffer overflow vulnerability in here.Īfter sending 1000 chars we did not get ACCESS DENIED error and we have been disconnected. ![]() And will wait for disconnect from the machine. So now I will try to send 1000 chars as a password. After connecting to 9999 port we are seeing this.
0 Comments
Read More
Leave a Reply. |