|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: - OUAH - (ouah_
hotmail.com)Date: Fri May 17 2002 - 08:13:30 CDT
If you can control another buffer which is executable (maybe in bss or heap
in tru64?) you can jump into. Even if there are NULL bytes in 64 btyes
adress, DEC alpha is Little Endian so it is possible in many cases (like
with Linux Alpha) to overwrite the retaddr with ONE address (but only one,
it's the reason RET-into-libc arent possibles).
I know there some shellcodes for digital unix. The shellode is encoded and
then decoded to contains any NULL bytes.
OUAH
_________________________________________________________________
Discutez en ligne avec vos amis, essayez MSN Messenger :
http://messenger.msn.com
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]