Skip to Main Content
Sockets, Shellcode, Porting, and Coding: Reverse Engineering Exploits and Tool Coding for Security Professionals
book

Sockets, Shellcode, Porting, and Coding: Reverse Engineering Exploits and Tool Coding for Security Professionals

by James C Foster
April 2005
Intermediate to advanced content levelIntermediate to advanced
700 pages
20h 39m
English
Syngress
Content preview from Sockets, Shellcode, Porting, and Coding: Reverse Engineering Exploits and Tool Coding for Security Professionals
65
66
execle(argv[1], argv[2], NULL, env);
67
68
return(0);
69 }
The shellcode is found on lines 30 through 36.These lines of code are executed
when the buffer is actually overflowed and starts a root-level shell for the attacker.The
setresuid function sets the privileges to root, and then the execve call executes /bin/sh
(bourne shell).
Conclusion
Vulnerabilities can often be found in libraries that are used by a variety of applications.
Finding a critical library vulnerability can allow for a large grouping of vulnerable
system scenarios so that even if one application isn’t present, another can be exploited.
Day by day, these vulnerabilities are more likely ...
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Start your free trial

You might also like

32/64-Bit 80x86 Assembly Language Architecture

32/64-Bit 80x86 Assembly Language Architecture

James Leiterman

Publisher Resources

ISBN: 9781597490054