Author: 7cherubin
Date: 2021-12-29 14:59
Summary: There is a bug with the implementation of the second scanf used to get the user's comment due to it allowing an arbitraty amount of characters to be inputted.
This bug allows for a buffer overflow attack to be executed if the input is exactly 8 characters.
The input overwrites a value that decides whether the program will follow the success or failure branch.
Loading writeup...