simon/CTF
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
Files
365a15986bbd4434432ac2cbf5f222cbe2d7485d
CTF/DownUnderCTF 2023/beginner/one byte
History
Simon 365a15986b some things
2023-09-02 14:08:40 +02:00
..
onebyte
some things
2023-09-02 14:08:40 +02:00
onebyte.c
some things
2023-09-02 14:08:40 +02:00
onebyte.py
some things
2023-09-02 14:08:40 +02:00
README.md
some things
2023-09-02 14:08:40 +02:00

README.md

one byte

Here's a one byte buffer overflow!

Author: joseph
nc 2023.ductf.dev 30018

Source

onebyte.c

#include <stdio.h>
#include <unistd.h>
#include <stdlib.h>

void init() {
    setvbuf(stdout, 0, 2, 0);
    setvbuf(stdin, 0, 2, 0);
}

void win() {
    system("/bin/sh");
}

int main() {
    init();

    printf("Free junk: 0x%lx\n", init);
    printf("Your turn: ");

    char buf[0x10];
    read(0, buf, 0x11);
}

Analyse

Das Ziel ist recht eindeutig. Wir kontrollieren 1 Byte und sollen einen Sprung nach win() bewirken.

Lösung

#TODO

Reference in New Issue View Git Blame Copy Permalink