pwnmedium

Stonks

hackerlab

Task: Trading terminal with buffer overflow vulnerability in global .data section. Solution: Overflow ticker buffer to overwrite adjacent user_cmd variable, then trigger system() call to execute arbitrary commands.

$ ls tags/ techniques/

command_injection elf64 buffer_overflow gets global_buffer system data_section adjacent_variable_overwrite trading_terminal

Analysis

Lorem ipsum dolor sit amet, consectetur adipiscing elit. Sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud exercitation ullamco laboris nisi ut aliquip ex ea commodo consequat.

$ python3 exploit.py --target 192.168.1.1 --port 8080
[*] Connecting to target...
[+] Shell obtained!

Excepteur sint occaecat cupidatat non proident, sunt in culpa qui officia deserunt mollit anim id est laborum.

🔒

Permission denied (requires tier.pro)

Sign in to access full writeups

Create a free account with GitHub, then upgrade to Pro.

$ssh [email protected]