Posts

Category: Pwn Points: 100 Difficulty: Easy Description It happily follows a familiar tune ... Overview This challenge consists in an ELF binary that print a banner and then allows the user to input a string, nothing more. Vulnerabilities Inside the vuln() function, we find this code: void vuln(void) { undefined1 local_138 [304]; read(0,local_138,350); return; } As we can see, there is a clearly buffer overflow, so if we input a string longer than 304, we can overwrite the return address of the function, since there are no stack protections: ...