Government Security
Network Security Resources

Jump to content

Photo

I Crashed The Server, Now What?


  • Please log in to reply
1 reply to this topic

#1 scuarplex

scuarplex

    Private

  • Members
  • 10 posts

Posted 04 June 2013 - 11:41 AM

Hello,

 

I've been fuzzing a server by fuzzing the different Headers it uses.

 

After putting like 2048 A's the server crashes. Now  how could i inject a Shellcode or confirm if it's a BoF?

 

Unfourtunally i don't know any Assembly or how could i create a simple shellcode since i'm a more Web-App-Sec guy.

 



#2 Glyph

Glyph

    General of the Army

  • GSO Management
  • 1,599 posts

Posted 05 June 2013 - 06:15 AM

You don't say what kind of server it is.

However if you really want to dig into it, look at doing the following.

Link the 'server' process to a debugger.. this will allow you to see exactly what is happening when the fault occurs.

Then you can work on confirming that it's repeatable. At that point you might want to let the author(s) know about it.

Give them the exact repeatable process. It may just be a misconfiguration that is causing the fault.

YMMV






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users