Is GOT exploitable in solaris?

From: Minchu Mo (morris_minchuat_private)
Date: Mon Dec 24 2001 - 19:06:57 PST

Next message: 3APA3A: "Re[2]: "Universal Plug and Play technology exploit code""

Previous message: Florian Weimer: "Re: "Universal Plug and Play technology exploit code""
Next in thread: KF: "Re: Is GOT exploitable in solaris?"
Reply: KF: "Re: Is GOT exploitable in solaris?"
Reply: Shaun Clowes: "Re: Is GOT exploitable in solaris?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

('binary' encoding is not supported, stored as-is) The entry of Global Offset Table in linux is pointer to piece of executable code( say printf), so overwrite the pointer will force the process run your shellcode or whatever.. Maybe a mistake/illusion after too much beer, I found the Solaris implmentation of GOT entry is actually not pointer, but starting point of 3 instructions which finally jump to say, printf executable code. So overwrite the entry with your shell code address simply corrupt these instruction but not control the process. Has anybody succesfully exploit GOT entry in solaris? Or another way of asking; Is GOT/PLT implemented differently in linux/solaris?

Next message: 3APA3A: "Re[2]: "Universal Plug and Play technology exploit code""
Previous message: Florian Weimer: "Re: "Universal Plug and Play technology exploit code""
Next in thread: KF: "Re: Is GOT exploitable in solaris?"
Reply: KF: "Re: Is GOT exploitable in solaris?"
Reply: Shaun Clowes: "Re: Is GOT exploitable in solaris?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Mon Dec 24 2001 - 20:16:13 PST