|
-
January 8th, 2003, 11:16 AM
#1
format string exploitation
While surfing over to check out my friends @ www.netric.org I found a nice tutorial by The Itch on format string exploitation.
functions vulnerable to wrong formatting are:
fprintf();
printf();
sprintf();
snprintf();
vfprintf();
vprintf();
vsprintf();
vsnprintf();
setproctitle();
syslog();
and many others like err*, verr*, warn* and vwarn*.
Read it all here
ASCII stupid question, get a stupid ANSI.
When in Russia, pet a PETSCII.
Get your ass over to SLAYRadio the best station for C64 Remixes !
-
January 8th, 2003, 05:48 PM
#2
Man U got love coding! great info.
-
January 8th, 2003, 06:17 PM
#3
Hey the_JinX, thanks! I had only heard of format string exploits but hadn't found any detailed info on it!
Ammo
Credit travels up, blame travels down -- The Boss
-
January 8th, 2003, 11:35 PM
#4
There are may more and many other programming languages wich have the same problem. If you think abit about it there are more commands that are exploitable then there are who aren't (on the more davanced programming languages).
-
January 9th, 2003, 05:05 AM
#5
Junior Member
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|
Reply With Quote