>Basically, a simple telnet to the open TCP port causes a particular
>service to die.

[...]

>I attempted to send many 0x41 chars, and then checked the various
>registers in the state dump (dr watson log file) but it does not appear
>that my data is getting through.

If you just telnet and it crashes the service right away don't even try to
do something with your remaining telnet session..

>Dr. Watson - exception number: c0000005 (access violation)

>FAULT -> 00403224 8b07 mov eax,[edi] ds:00000000=????????

c0000005 is access violation in read operation. Basically here you smashed
your data segment and try to read from it. The most you could do is go up a
bit in the program disassembly and find what smashes ds to see is you can
get something else to get smashed.

~TB

_________________________________________________________________
The new MSN 8: advanced junk mail protection and 2 months FREE*
http://join.msn.com/?page=features/junkmail

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]