[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] New security ezine released

To: full-disclosure@xxxxxxxxxxxxxxxx
Subject: Re: [Full-Disclosure] New security ezine released
From: Nick FitzGerald <nick@xxxxxxxxxxxxxxxxxxx>
Date: Fri, 28 May 2004 02:09:04 +1200

Christian Ney <chris@xxxxxxxxxxxx> wrote:

> There's only one way to find out: compile this stuff and use "strings
> BINARY|tail -2" on the binary, then your question should be answered
> completely, even without having to try it out (which I wouldn't advise you
> to do). ;)

There are easier/quicker ways than that...

If what you propose will be useful (which it will _IN THIS CASE_) then 
simply "hex to binary" decoding the hex-ified overflow data blocks will 
(normally) also work, as it did here and requires a much lighter 
toolset than a full-blown build environment.

Regards,

Nick FitzGerald

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

References:
- Re: [Full-Disclosure] New security ezine released
  - From: Nicob
- Re: [Full-Disclosure] New security ezine released
  - From: Christian Ney

Prev by Date: RE: [Full-Disclosure] Imaging Operating Systems
Next by Date: [Full-Disclosure] [OpenPKG-SA-2004.026] OpenPKG Security Advisory (apache)
Previous by thread: Re: [Full-Disclosure] New security ezine released
Next by thread: [Full-Disclosure] Re: Cisco's stolen code
Index(es):
- Date
- Thread