Hey guys,
I have found a buffer overflow in a program and overwritten eip. However when i overwrite eip with a jmp esp it never succeeds due to bad characters changing into F3. I have tried every single jmp esp i can find and none of them are sutable. What else can one do in situtaions like this?
Thanks.
Sponsored by: █ Sparkhost - Hosting Without Compromises! █ Hybrid Performance Web Hosting █ Spark Host Stream Hosting █ Hybrid IRC & IRCd Server Shell Accounts
Not One Jmp Esp Suitable
Started by
jake2891
, Oct 25 2010 01:57 AM
2 replies to this topic
#2
webdevil
-
- Sergeant Major
-
- 1,195 posts
Retired GSO General
Posted 25 October 2010 - 10:46 AM
Identify the bad char's first of all.
Plus I would need to see some output to answer more.
Plus I would need to see some output to answer more.
#3
jake2891
-
- Members
-
- 8 posts
Private
Posted 26 October 2010 - 05:44 AM
Thanks for the reply webdevil,
I will look into it some more but for now i can explain that overwriting eip with 0xdeadbeef it comes out as access violation when executing abadbeef? dont know how the de changes to ab ?
I will look into it some more but for now i can explain that overwriting eip with 0xdeadbeef it comes out as access violation when executing abadbeef? dont know how the de changes to ab ?
Identify the bad char's first of all.
Plus I would need to see some output to answer more.
0 user(s) are reading this topic
0 members, 0 guests, 0 anonymous users
