Skip to Main Content
Sockets, Shellcode, Porting, and Coding: Reverse Engineering Exploits and Tool Coding for Security Professionals
book

Sockets, Shellcode, Porting, and Coding: Reverse Engineering Exploits and Tool Coding for Security Professionals

by James C Foster
April 2005
Intermediate to advanced content levelIntermediate to advanced
700 pages
20h 39m
English
Syngress
Content preview from Sockets, Shellcode, Porting, and Coding: Reverse Engineering Exploits and Tool Coding for Security Professionals
Figure 11.9 Fake Chunk
Also keep in mind that bk + 8 will be overwritten with the address of “return loca-
tion – 12”. If shellcode is to be placed in this location, you must have a jump instruction
at “return address” to get past the bad instruction found at return address + 8. What
usually is done is simply a jmp 10 with nop padding. After the overflow occurs with the
fake chunk, the two chunks should look like that shown in Figure 11.10.
Figure 11.10 Overwritten Chunk
Upon the second free in our example vulnerable program, the overwritten chunk is
unlinked and the pointer overwriting occurs. If shellcode is placed in the address speci-
fied in the bk ...
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Start your free trial

You might also like

32/64-Bit 80x86 Assembly Language Architecture

32/64-Bit 80x86 Assembly Language Architecture

James Leiterman

Publisher Resources

ISBN: 9781597490054