Hijacking to Shellcode
Lecture
Example from the Shellcoding Module
Bug 1:
hello(bye1, name)should behello(name, bye1).Bug 2:
gets(name)causes buffer overflow.
Last updated
Bug 1: hello(bye1, name) should be hello(name, bye1).
Bug 2: gets(name) causes buffer overflow.
Last updated
void bye1() { puts("Goodbye!"); }
void bye2() { puts("Farewell!"); }
void hello(char *name, void (*bye_func)())
{
printf("Hello %s!\n", name);
bye_func();
}
int main(int argc, char **argv)
{
char name[1024];
gets(name);
srand(time(0));
if (rand() % 2) hello(bye1, name);
else hello(name, bye2);
}