Hi Guys,

I was wondering did anyone come across a decent tutorial for heap spraying and analysis with ollydbg? All I can find is tutorials patching software.

I think I may have found something interesting, at the the moment it is just a POC and i'm trying to get it execute arbitrary code.

I understand BOF and have written my own code and exploited it successfully. However, heap overflow is a new area for me.

Thanks

Ok, I am having major trouble trying to figure out what is causing firefox to break itself!! At it the last two days

(Versions)
Windows Media player(9) 9.00.00.4503
firefox 3.0.10

Have a look at an olly screenshot I took
http://img188.imageshack.us/img188/1...screenshot.jpg

Its seems to be a overflow of windows media player (Possibily a 0day)

The code that causes this is quite simple. I have tried injecting params but I cannot see what is causing this! (frustration)

<html>
<head>
<script type="text/JavaScript">
function timedRefresh(timeoutPeriod) {
setTimeout("location.reload(true);",timeoutPeriod) ;
}
</script>
</head>
<body onload="JavaScript:timedRefresh(5000);">
<!-- BEGIN PLUG-IN HTML FOR FIREFOX-->
<embed type="application/x-mplayer2"
pluginspage=""
src=""
</embed>
<!-- END PLUG-IN HTML FOR FIREFOX-->
</body>
</html>

(Access violation when writing to [00000010]) ------->

I have added a javascript refresh func(). Firefox crashes when the page is refreshed.

If anyone has better knowledge of overflows could you please take a look. I need a bit of motivation/ criticism here to continue trying to figure out whats going on

Thanks in advance