Search:

Type: Posts; User: abhijit_mohanta; Keyword(s):

Search: Search took 0.00 seconds.

  1. I tried to run the program in xp sp1 .As return...

    I tried to run the program in xp sp1 .As return address i used addres of stack adjustment that will move down furthur to stack i mean pop ebx ,ret.

    I see eip overwritten by 90909090 and the error...
  2. Hi I still have the problem with other jmp esp...

    Hi I still have the problem with other jmp esp address.I am not able to find whats wrong.I dont think I have done any wrong calculation regarding offsets and other things.Can u pls guide me furthur.
  3. I have tsted the shellcode using the following.It...

    I have tsted the shellcode using the following.It works as it should.I dont think a null byte is thr.

    #include <stdlib.h>
    #include <string.h>
    #include <stdio.h>

    char shellcode[]=...
  4. yes ESP is pointing to the the buffer.eip...

    yes ESP is pointing to the the buffer.eip overwritten at 524 and esp points at 528th byte.I use the following code to test.I find the total available space for shelocode is 932 bytes (after esp).But...
  5. can u please tell me why jmp ECX wont work on XP...

    can u please tell me why jmp ECX wont work on XP If not what else should I do
  6. The first NOP's I mean the beginnng of the...

    The first NOP's I mean the beginnng of the shellcodes are being pointed by ECX if I m not wrong so should'nt jmp ECX instruction should work.I'd like to know which machine u tried as I find after ...
  7. I have taken snaps of olly when I ran the...

    I have taken snaps of olly when I ran the exploit.I suppose it's taking 90909090 as some address.
    Snapshot of memory dump.I dont think the code has altered any of the input characters I mean there...
  8. hi compaq, dont u think 00 is a null character...

    hi compaq,
    dont u think 00 is a null character and the program would stop reading the input after it encounters that whether it is sp3 or any other service pack
  9. help in writing exploits stack overflow on xp sp2

    I am bit new to exploitation.But I know the basics.I have to write exploit for the following C code
    ---------------------------------------------------
    #include <iostream>
    #include <winsock.h>...
Results 1 to 9 of 9