Skip to content

Create update.c #5

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Create update.c #5

wants to merge 1 commit into from

Conversation

SleepTheGod
Copy link
Owner

How This Works
Overflows the buffer with 0x41 ('A') characters.
Overwrites the return address with 0x41414141 (arbitrary controlled value).
Writes the exploit payload to a file (/tmp/exploit_payload).
Executes the vulnerable program with the payload, causing a segmentation fault or arbitrary code execution.
Step 1: Compile the Exploit
gcc exploit.c -o exploit -fno-stack-protector -z execstack -g
Step 2: Run the Exploit
./exploit
Step 3: Debug the Vulnerable Program
Run the vulnerable program in GDB to confirm memory corruption
gdb -q ./vulnerable_program
(gdb) run $(cat /tmp/exploit_payload)
(gdb) info registers
(gdb) x/20x $esp

Look for the following code
EIP Overwrite (EIP = 0x41414141)
Segmentation Fault indicating successful corruption.

Next Steps
If the program crashes with 0x41414141 in EIP, it's exploitable.
Replace 0x41414141 with a jump to shellcode (jmp esp).
Inject NOP sled + shellcode to spawn a shell.

@SleepTheGod SleepTheGod self-assigned this Mar 2, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees

@SleepTheGod SleepTheGod

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@SleepTheGod