I think I understand the theory behind this one. Just having trouble with the actual data.
Obviously the goal is to create a buffer overflow that breaks the 'data' executable.
I see that a 10 byte string is called for and you would want to break the program by overwriting it.
The dump files tell you which hex values can be used to exploit the executable.
You can enter the hex values with the unicode program. Then run 'data' and it should break. Thus giving you root.
Am I even close? lol
I feel like I'm "getting it" just enough to look stupid. =\
Or in other words (if I'm close) then I know what to do, just not sure how to do it.
If I'm correct in theory, then my problem is reading and understanding the dump files. (Not familiar with C++) I've tried researching this and the "real world" examples lead me to believe I'm correct on the concept, but they're not very helpful with actual command input.
Obviously the goal is to create a buffer overflow that breaks the 'data' executable.
I see that a 10 byte string is called for and you would want to break the program by overwriting it.
The dump files tell you which hex values can be used to exploit the executable.
You can enter the hex values with the unicode program. Then run 'data' and it should break. Thus giving you root.
Am I even close? lol
I feel like I'm "getting it" just enough to look stupid. =\
Or in other words (if I'm close) then I know what to do, just not sure how to do it.
If I'm correct in theory, then my problem is reading and understanding the dump files. (Not familiar with C++) I've tried researching this and the "real world" examples lead me to believe I'm correct on the concept, but they're not very helpful with actual command input.