|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: Dave Aitel (daitel
atstake.com)Date: Fri Jan 11 2002 - 17:07:39 CST
There are many ways. Sometimes valid addresses can be formed with
isalpha()-only characters (or an off by one issue can be taken advantage
of), and shellcode can also be designed with that filter in mind.
-dave
On Fri, 2002-01-11 at 15:41, James Fleming wrote:
> I had an idea. If my input filter doesn't accept any
> binary data on input (ie i check the object type and
> only allow String, Int etc....how can anyone pass a
> overflow payload to the application ?
>
> __________________________________________________
> Do You Yahoo!?
> Send FREE video emails in Yahoo! Mail!
> http://promo.yahoo.com/videomail/
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]