Author: jake2891, Posted: Mon Oct 25, 2010 10:31 am Post subject: exploit.. not one jmp esp suitable ---- Hey guys,
I have found a buffer overflow in a program and overwritten eip. However when i overwrite eip with a jmp esp it never succeeds due to bad characters changing into F3. I have tried every single jmp esp i can find and none of them are sutable. What else can one do in situtaions like this?
Thanks.
Author: Fire Ant, Location: LondonPosted: Mon Nov 01, 2010 9:50 pm Post subject: ---- Jake,
From your post it seems like that you are overwriting EIP with an instruction. EIP is a pointer to the memory location which contains the next instruction and not the instruction itself.
When overwriting EIP you should be pointing to something like the address of your NOP sled which will eventually point to your shell.