HomeCalendarCertificationsColumnsFeaturesForumResourcesVitals
 
Image
 
linkedin_logo.png rss_logo.jpg
twitter_logo.png youtube_logo.jpg
Latest Additions
 
EH-Net Login
Welcome Guest.
Lost Password?
No account yet? Register
Who's Online
We have 31 guests and 3 members online
 
Free Business and Tech Magazines and eBooks

You are here: Home arrow Ethical Hacking Discussions and Related Certificationsarrow Programmingarrow Payloads in buffer overflows?
EH-Net
May 22, 2013, 11:55:57 PM *
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
News: Go back to The Ethical Hacker Network Online Magazine Home Page
 
   Home   Help Calendar Login Register  
Pages: [1]   Go Down
« previous next »
  Print  
Author Topic: Payloads in buffer overflows?  (Read 11128 times)
0 Members and 1 Guest are viewing this topic.
Job314
Newbie
*
Offline Offline

Posts: 9


View Profile
« on: September 15, 2009, 08:52:50 PM »
I'm studying for my CEH exam, and when I came across a segment on buffer overflows I had more questions than my book had answers.  I have taught myself quite a bit on the topic, but still have one question that I cannot locate the answer to.

How exactly do you attach a PAYLOAD to the buffer overflow?

For example in this "lesson" video:
http://www.youtube.com/watch?v=NZMJA9S8EiQ

the author is causing AOL instant messenger to crash because it was not expecting such an abnormally long screen name.  Great- but how does that benefit an attacker?  What else would they need to do to say... execute a file, or otherwise deliver the payload?
Logged
Ketchup
Hero Member
*****
Offline Offline

Posts: 1021



View Profile
« Reply #1 on: September 15, 2009, 09:28:54 PM »
The payload has to do with where the buffer lies on the stack or the heap and overriding the program's instructions to redirect execution flow to your set of instructions.  The instructions you substitute are called Shell Code.  The following articles should help you understand:

http://insecure.org/stf/smashstack.html
http://www.ethicalhacker.net/content/view/122/2/

If you really want to understand how this works, I highly recommend the book "Hacking, The Art of Exploitation"

http://www.amazon.com/Hacking-Art-Exploitation-Jon-Erickson/dp/1593271441/ref=sr_1_1?ie=UTF8&s=books&qid=1253068107&sr=8-1
Logged
~~~~~~~~~~~~~~
Ketchup
UNIX
Hero Member
*****
Offline Offline

Posts: 1235


View Profile
« Reply #2 on: September 16, 2009, 06:37:44 AM »
If you are seriously interested in this, I would second the recommendations given by Ketchup. Smashing The Stack For Fun And Profit is a classic and worth to read, as well as the book Hacking: The Art of Exploitation.

Another book I can recommend is The Shellcoder's Handbook: Discovering and Exploiting Security Holes .
Logged
Job314
Newbie
*
Offline Offline

Posts: 9


View Profile
« Reply #3 on: September 16, 2009, 11:12:02 PM »
Thanks both of you.  I'll need some time to read over all the material you have suggested.  I appreciate your help!
Logged
Pages: [1]   Go Up
  Print  
« previous next »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.18 | SMF © 2013, Simple Machines
Joomla Bridge by JoomlaHacks.com 		Valid XHTML 1.0! Valid CSS!
Page created in 0.062 seconds with 22 queries.
 
Exclusive Deal

sansfire13_245x90_cw90.jpg
SANSFIRE 2013
June 15 - 22

5% Off w/ Code: EHN_5

SANS Deals 4 EH-Netters
5% OFF Any SANS Course in Any Format!
Coupon Code: EHN_5 Including SANS Rocky Mountain 2013 & SANS Boston 2013
Polls
Compared to this year, 2013 will be:
 
Recent Forum Topics
EH-Net News Feeds
Latest Additions
 
         
Advertisement

© 2013 The Ethical Hacker Network
Joomla! is Free Software released under the GNU/GPL License.