('binary' encoding is not supported, stored as-is) The entry of Global Offset Table in linux is pointer to piece of executable code( say printf), so overwrite the pointer will force the process run your shellcode or whatever.. Maybe a mistake/illusion after too much beer, I found the Solaris implmentation of GOT entry is actually not pointer, but starting point of 3 instructions which finally jump to say, printf executable code. So overwrite the entry with your shell code address simply corrupt these instruction but not control the process. Has anybody succesfully exploit GOT entry in solaris? Or another way of asking; Is GOT/PLT implemented differently in linux/solaris?
This archive was generated by hypermail 2b30 : Mon Dec 24 2001 - 20:16:13 PST