There are many exploit code of buffer overflow. However, almost all codes works well only in the intel x86 linux. This paper will attempt to explain how you exploit same bug in the alpha linux. Read this paper in securiteam.com
Archive for December, 2006
BOF exploit in the Alpha Linux
December 7, 2006Advanced malloc exploits
December 7, 2006This article explains what several techniques that allow more generic and reliable exploitation of processes that provide us with the ability to overwrite an almost arbitrary 4 byte value at any location.
read this paper in Phrack.org
Microsoft Anti-Cross site scripting Library
December 7, 2006Cross-site scripting (XSS) attacks exploit vulnerabilities in Web-based applications that fail to properly validate and/or encode input that is embedded in response data. Malicious users can then inject client-side script into response data causing the unsuspecting user’s browser to execute the script code. The script code will appear to have originated from a trusted-site and may be able to bypass browser protection mechanisms such as security zones. See This Library in microsoft.
Exploiting with linux-gate.so.1
December 7, 2006linux-gate.so.1 not a dynamically loaded library but a dynamically shared object (DSO).This article explains what linux-gate.so.1 how it can be useful for exploits and can byppasing some protections.this is pretty good for Buffer Overflow Exploits.
you can read this paper here.
return-into-libc Papers
December 7, 2006return-into-libc is very useful method for exploiting .this is a method of exploiting a buffer overflow on a system that has a non-executable stack (like linux).
The advanced return-into-lib(c) exploits
Exploitation - returning into libc
c0ntex - return to libcÂ
