| But printf will stop when it gets a null byte
i can't see how that would help |
==> |
| The printf stops at null byte, and it's a 64bit binary, so first 2 bytes are always going to be null,
|
==> |
| Hey @BitFriends, NULL byte is terminating my string, can you help. |
==> |
| and then "shell"
that's all
easy.
|
==> |
| "%3737u %7$n"
|
==> |
| I will post a writeup.
|
==> |
| It's easy
|
==> |
| There are just two vulns,
|
==> |
| Yeah, I know it's %n but it's not working. I think i'm Missing something.
|
==> |
| I am able to write the address which is at %7$p to the stack but not able to write to it's memory. I wrote a python script with pwntools
to interact with the process. I'm getting nowhere. Can someone help me.
my email ano12@pm.me
|
==> |
| Can someone give me a hint, i know there is a format string, but i don't have clue how to exploit it. |
==> |
| There is a format string vuln but don't know how to exploit it.
|
==> |
| it was nice
|
==> |