dragons_ctf
dragons_ctf
dragons_ctf
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
One-gadget RCE on Linux<br />
• Assuming:<br />
– remote exploitation task for GNU/Linux,<br />
– stdin and stdout redirected to connection sockets,<br />
– ability to leak the base address of libc,<br />
– version of libc is known,<br />
– EIP / RIP can be controlled, but not the function parameters.<br />
• overwritten function pointer<br />
• overwitten .got.plt entry