Re: "Moving" Stack: my poor return address!

From: Javor Ninov (drfrancky@securax.org)
Date: Mon Aug 28 2006 - 13:12:37 EDT

• Next message: Aurelio Madrid: "Congratulations!"
• Previous message: Jarrod Joiner: "Discover the real energy of your body"
• In reply to: list-recv@crepinc.com: "Re: "Moving" Stack: my poor return address!"
• Next in thread: Jon Erickson: "Re: "Moving" Stack: my poor return address!"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

You should look also at http://www.milw0rm.com/papers/55
very good example

--
Javor Ninov aka DrFrancky
drfrancky shift+2 securax.org
list-recv@crepinc.com wrote:
> Thanks all for letting me know about stack randomization.
> 
> So is it safe to say that "traditional" stack-based exploits such as in my origianl post are a thing of the past, and current exploit developers use methods like returning into libc to get a shell / etc?
> 
> Thanks again,
> 
> -Jack Carrozzo
> jack   _{@}_   crepinc.com

• application/pgp-signature attachment: OpenPGP digital signature

• Next message: Aurelio Madrid: "Congratulations!"
• Previous message: Jarrod Joiner: "Discover the real energy of your body"
• In reply to: list-recv@crepinc.com: "Re: "Moving" Stack: my poor return address!"
• Next in thread: Jon Erickson: "Re: "Moving" Stack: my poor return address!"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Wed Apr 09 2008 - 22:29:52 EDT