Log in

View Full Version : Format String Attacks...steps help


galda
January 30th, 2010, 12:10
Hi,
(using linux)
my steps were to find a format string with %x, after i found it i found a right place to overwrite with objdump (an exit() function) and i have my shellcode as an env var in the system...but now what? what is the next thing to do?

squidge
January 30th, 2010, 18:19
Typically, it would be to try and get the application to run your code, but maybe you should do some research first.