|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: Jump back to shellcode Windows overflow
From: Blue Boar (BlueBoar
thievco.com)
Date: Tue Apr 22 2003 - 12:45:52 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
How about just a short or near jmp? How many bytes between where EIP lands
and your shellcode? I.E. jmp -128 or something? EB 80, I think.
BB
chaboyd77yahoo.com wrote:
>
> I'm practicing developing Windows Buffer Overflows and
>
> have run into a slight snag. When I overwrite EIP with
>
> the address of "jmp ESP" I land below my shellcode instead
>
> of where the top of the stack used to be:
>
>
>
> <-----------400 bytes-------->
>
> [NOP's........Shellcode...EIP..*<-code jumps here**]
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]