Return-into-libc is probably your best bet, similar to the way you'd exploit something with non-exec stacks. Not many other options .. if you can control heap data you might be able to return into that. -----Original Message----- From: Cryptic_Phreak . [mailto:pondermateat_private] Sent: Monday, 11 August 2003 2:03 AM To: vuln-devat_private Subject: quick question I'm not sure if this has been asked before by anyone; but how do you exploit a stack overflow with a random stackbase? I've read bit of return-into-libc, is that what must be used? _________________________________________________________________ The new MSN 8: smart spam protection and 2 months FREE* http://join.msn.com/?page=features/junkmail
This archive was generated by hypermail 2b30 : Mon Aug 11 2003 - 09:04:45 PDT