Results 1 to 3 of 3

Thread: Stack Smashing under Backtrack 5

Hybrid View

  1. #1
    Just burned his ISO
    Join Date
    Feb 2010
    Posts
    23

    Default Stack Smashing under Backtrack 5

    Currently trying to smash the stack under backtrack 5.

    I set va_randomize_space to 0

    I compile the vulnurable source with gcc and use the flags -fno-stack-protector as well as -z execstack

    I'm still unable to smash due to some other stack protection. What else could I be missing?

  2. #2
    Just burned his ISO
    Join Date
    Mar 2012
    Posts
    1

    Default Re: Stack Smashing under Backtrack 5

    root@bt:~# gcc -g -o resultprog -fno-stack-protector -mpreferred-stack-boundary=2 sourceprog.c

  3. #3
    Just burned his ISO
    Join Date
    Feb 2010
    Posts
    23

    Default Re: Stack Smashing under Backtrack 5

    Following those exact steps produces the following results within the image attached.

    The very last 4 byte section on the stack is the return address.

    Following that, the EBP was pushed onto the stack.

    Then an 80 byte buffer was pushed onto the stack.

    The problem is that the 80 byte buffer was not that last item pushed onto the stack. 0xb7f77d19 and 0xb7ea22a5 are pushed onto the stack after the 80 byte buffer. No idea what they are.

    Either way I am able to overwrite 0xb7e89bd6 with the top of the stack, but then the program receives signal SIGILL.

    I've also adjusted my exploit to overwrite the return address with location 0xbffff412, but still the same results occur.

    Thanks for the suggestion tho. Any other help would be greatly appreciated.
    Immagini allegate Immagini allegate

Similar Threads

  1. stack cookie
    By badc0re in forum Experts Forum
    Replies: 0
    Last Post: 02-01-2011, 10:35 AM
  2. nmap stack smashing
    By RageLtMan in forum Beginners Forum
    Replies: 8
    Last Post: 01-29-2010, 06:18 AM
  3. Stack Overflows using Python
    By Pako_Guitar in forum OLD Programming
    Replies: 0
    Last Post: 10-01-2008, 01:18 PM
  4. Stack executability
    By nullbashr in forum OLD Newbie Area
    Replies: 7
    Last Post: 09-11-2007, 08:09 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •