On Sat, Aug 1, 2009 at 10:01 AM, abhi wrote:
>>ret = buffer1 + 13; // ebp + 4
>>works fine for me, try n let me know what u get
>
> Hi null null(heh)
> I tried but* aint working*.
> What OS, kernel, gcc do u have?
>
compile using: -fno-stack-protector option to gcc
Doesn't matter what version u
>ret = buffer1 + 13; // ebp + 4
>works fine for me, try n let me know what u get
Hi null null(heh)
I tried but* aint working*.
What OS, kernel, gcc do u have?
Heres the asm of function():
(gdb) disas function
Dump of assembler code for function function:
0x08048414 :push %ebp
0x0804841
On Fri, Jul 31, 2009 at 5:07 PM, abhi wrote:
> Oh and heres the asm code:
> gdb code:
> (gdb) disas main
> Dump of assembler code for function main:
> 0x0804844e :lea0x4(%esp),%ecx
> 0x08048452 :and$0xfff0,%esp
> 0x08048455 :pushl -0x4(%ecx)
using gdb: once inside functio
Oh and heres the asm code:
gdb code:
(gdb) disas main
Dump of assembler code for function main:
0x0804844e :lea0x4(%esp),%ecx
0x08048452 :and$0xfff0,%esp
0x08048455 :pushl -0x4(%ecx)
0x08048458 :push %ebp
0x08048459 :mov%esp,%ebp
0x0804845b :push %ecx
0x
Hello all.
I m trying to smash(change the return address) the stack.
I think i m missing the correct numbers(sue to differences in krnl and gcc
versions).
Heres the code :
#include
void function(int a, int b, int c) {
char buffer1[5];
char buffer2[10];
int *ret;
ret = buffer1 + 9;//I think that
