exploit.. not one jmp esp suitable

Networking/Security Forums -> Exploits // System Weaknesses

Author: jake2891 PostPosted: Mon Oct 25, 2010 10:31 am    Post subject: exploit.. not one jmp esp suitable
    ----
Hey guys,

I have found a buffer overflow in a program and overwritten eip. However when i overwrite eip with a jmp esp it never succeeds due to bad characters changing into F3. I have tried every single jmp esp i can find and none of them are sutable. What else can one do in situtaions like this?

Thanks.

Author: Fire AntLocation: London PostPosted: Mon Nov 01, 2010 9:50 pm    Post subject:
    ----
Jake,

From your post it seems like that you are overwriting EIP with an instruction. EIP is a pointer to the memory location which contains the next instruction and not the instruction itself.

When overwriting EIP you should be pointing to something like the address of your NOP sled which will eventually point to your shell.

Fire Ant



Networking/Security Forums -> Exploits // System Weaknesses


output generated using printer-friendly topic mod, All times are GMT + 2 Hours

Page 1 of 1

Powered by phpBB 2.0.x © 2001 phpBB Group