I am quite stuck with an assignment question, exploiting vulnerability (vfprintf) in sudo_debug function with ASLR (CVE: 2012-0809). I can only use string format exploits.
ONLY ASLR IS ENABLED < NO FORTIFY_SOURCE
I must overwrite the value of user_details.uid variable. I have been examining stack to find patterns or offsets to crack it, but could not find any. I am quite unsure how to proceed. What to do next?
Asked
Active
Viewed 440 times
3
1 Answers
3
You could start by reading the full description of CVE: 2012-0809 and then look for a poc. A brief introduction to format string exploitation is a good starting point.
Sebi
- 1,391
- 9
- 16