Date: Wed, 08 Dec 1999 23:56:30 +0100 From: Roelof Osinga <roelof@nisser.com> To: Alfred Perlstein <bright@wintelcom.net> Cc: Jonathon McKitrick <jcm@dogma.freebsd-uk.eu.org>, Kris Kennaway <kris@hub.freebsd.org>, freebsd-chat <chat@FreeBSD.ORG> Subject: Re: Yahoo hacked last night Message-ID: <384EE21E.AE92B628@nisser.com> References: <Pine.BSF.4.21.9912081457560.4557-100000@fw.wintelcom.net>
next in thread | previous in thread | raw e-mail | index | archive | help
Alfred Perlstein wrote: > > It's common in C where automatic variables are allocated on the stack. Shoot, yes. Forgot about that. > ... > The stack is executable, check the mailing lists for "trampoline" > this hasn't come up in almost a year. OK, so you put the code in the stack with a return address that points to it. Given an automatic variable that is overflowing that would work. > It's not difficult if you have the source or a lot of time on your > hands. It's indeed easier than I thought <g>. Alas. Roelof -- ---------------------------------------------------------------- Het Slakke Huis van de TGV op http://SlakkeHuis.com/ ---------------------------------------------------------------- Home is where the (@) http://eboa.com/ is. Telekabel home http://nisser.com/ Beveiligingsverwijzingen http://nisser.com/links.htm Chello lijn monitor http://nisser.com/~roelof/logs_chello.shtml ---------------------------------------------------------------- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-chat" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?384EE21E.AE92B628>