ELF ARM - Heap Overflow

120 Punkte  

Can you pwn the heap without convenient pointers to overwrite?

Autor

pickle,  

Stufe  Schwierigkeitsgrad

Validierung

23 Herausforderer 1%

Bewertung  Bewertung

1
2
3
4
5
10 votes
Bitte loggen Sie sich ein um auf diese Seite zugreifen zu können

Musterlösung  Musterlösung

Eine Musterlösung vorschlagen

Ergebnisse der Übungen Ergebnisse der Übungen

Nickname Übungen Sprache date
Tomtombinary   ELF ARM - Heap Overflow fr 12. September 2019 zu  13:52
nonstandardmodel   ELF ARM - Heap Overflow en 9. Mai 2019 zu  10:35
venom   ELF ARM - Heap Overflow en 1. November 2018 zu  14:48
Jrmbt   ELF ARM - Heap Overflow fr 25. Oktober 2018 zu  18:54
Kurt   ELF ARM - Heap Overflow en 2. Oktober 2018 zu  21:45
hTm1zZwW   ELF ARM - Heap Overflow en 24. Februar 2018 zu  00:16
Kileak   ELF ARM - Heap Overflow en 20. Februar 2018 zu  18:13
XeR   ELF ARM - Heap Overflow fr 4. Februar 2018 zu  21:59
panda   ELF ARM - Heap Overflow fr 16. Dezember 2017 zu  17:50
esanfelix   ELF ARM - Heap Overflow en 23. Juli 2017 zu  19:53

In dieser Rubrik veröffentlichte Übungen 69 Übungen

Ergebnis Name der Übung Validierung Anzahl der Punkte  Erklärung der Punktevergabe Schwierigkeitsgrad  Schwierigkeitsgrad Autor Bewertung  Bewertung Musterlösung
pas_valide ELF x86 - Stack buffer overflow basic 1 8% 11882 5 Lyes 2
pas_valide ELF x86 - Stack buffer overflow basic 2 6% 8766 10 Lyes 1
pas_valide ELF x86 - Format string bug basic 1 4% 5815 15 Lu33Y 0
pas_valide ELF x64 - Stack buffer overflow - basic 3% 4306 20 Arod 0
pas_valide ELF x86 - Format string bug basic 2 2% 2870 20 Lyes 0
pas_valide ELF x86 - Race condition 3% 3909 20 Lu33Y 0
pas_valide ELF ARM - Stack buffer overflow - basic 1% 724 25 pickle 1
pas_valide ELF MIPS - Stack buffer overflow - No NX 1% 191 25 franb 0
pas_valide ELF x86 - Stack buffer overflow basic 3 2% 2837 25 Lyes 0
pas_valide ELF x86 - Use After Free - basic 1% 383 25 Esad 0
pas_valide ELF ARM - Stack Spraying 1% 137 30 pickle 0
pas_valide ELF x86 - BSS buffer overflow 2% 2997 30 Lu33Y 1
pas_valide ELF x86 - Stack buffer overflow basic 4 2% 2001 30 Lu33Y 0
pas_valide ELF x86 - Stack buffer overflow basic 6 2% 1640 30 TiWim 1
pas_valide ELF x86 - Format String Bug Basic 3 1% 775 35 Lyes 0
pas_valide ELF ARM - Basic ROP 1% 351 40 pickle 0
pas_valide ELF MIPS - Basic ROP 1% 62 40 dagger 0
pas_valide ELF x86 - Stack buffer overflow - C++ vtables 1% 556 40 sebbb 0
pas_valide ELF x64 - Logic bug 1% 114 50 sbrk 0
pas_valide ELF x86 - Bug Hunting - Several issues 1% 59 50 sbrk 0
pas_valide ELF x86 - Stack buffer and integer overflow 1% 1471 50 Lu33Y 0
pas_valide ELF x86 - Stack buffer overflow - ret2dl_resolve 1% 87 50 kikko 0
pas_valide ELF x86 - Stack buffer overflow basic 5 1% 1344 50 Lu33Y 0
pas_valide ELF x64 - Stack buffer overflow - advanced 1% 778 55 Arod 0
pas_valide ELF MIPS - Format String Glitch 1% 27 60 pickle, martin 0
pas_valide ELF x86 - Information leakage with Stack Smashing Protector 1% 584 60 Arod 0
pas_valide ELF ARM - Race condition 1% 80 70 pickle 0
pas_valide ELF x64 - Browser exploit - Intro 1% 40 70 pickle 0
pas_valide ELF x86 - Out of bounds attack - French Paradox 1% 68 70 sbrk 0
pas_valide ELF x86 - Remote BSS buffer overflow 1% 633 75 Tosh 0
pas_valide ELF x86 - Remote Format String bug 1% 783 75 Tosh 0
pas_valide ELF x64 - Remote heap buffer overflow - fastbin 1% 177 80 franb 0
pas_valide ELF x86 - Blind remote format string bug 1% 215 80 Lyes 0
pas_valide LinKern ARM - vulnerable syscall 1% 75 85 pickle 0
pas_valide LinKern x86 - Buffer overflow basic 1 1% 283 85 franb 0
pas_valide LinKern x86 - Null pointer dereference 1% 303 90 franb 0
pas_valide LinKern x64 - Race condition 1% 186 95 franb 0
pas_valide ELF ARM - Alphanumeric shellcode 1% 23 100 pickle 0
pas_valide ELF MIPS - URLEncoded Format String bug 1% 13 100 pickle 0
pas_valide ELF x86 - Hardened binary 1 1% 523 100 sm0k 0
pas_valide ELF x86 - Hardened binary 2 1% 410 100 sm0k 0
pas_valide ELF x86 - Hardened binary 3 1% 260 100 sm0k 0
pas_valide ELF x86 - Hardened binary 4 1% 291 100 sm0k 0
pas_valide LinKern MIPSel - Vulnerable ioctl 1% 24 100 pickle 0
pas_valide LinKern x64 - reentrant code 1% 96 100 franb 0
pas_valide ELF ARM - Heap format string bug 1% 45 105 franb 0
pas_valide ELF x64 - Sigreturn Oriented Programming 1% 172 105 Arod 0
pas_valide ELF ARM - Format String bug 1% 54 110 pickle 0
pas_valide ELF ARM - Use After Free 1% 52 110 pickle 0
pas_valide ELF x64 - Heap feng-shui 1% 37 110 laxa 0
pas_valide ELF x64 - Off-by-one bug 1% 86 110 NeedToLearn 0
pas_valide ELF x86 - Hardened binary 5 1% 219 110 sm0k 0
pas_valide LinKern ARM - Stack Overflow 1% 31 110 pickle 0
pas_valide LinKern x86 - basic ROP 1% 145 110 franb 0
pas_valide ELF ARM - Heap Off-by-One 1% 31 115 pickle 0
pas_valide ELF x64 - Remote Heap buffer overflow 1 1% 102 115 Tosh 0
pas_valide ELF x86 - Hardened binary 6 1% 205 115 sm0k 0
pas_valide ELF x86 - Hardened binary 7 1% 168 115 Tosh 0
pas_valide ELF x86 - Remote stack buffer overflow - Hardened 1% 96 115 franb 0
pas_valide LinKern x64 - RowHammer 1% 25 115 pickle 0
pas_valide LinKern x64 - SLUB off-by-one 1% 17 115 Tosh 0
pas_valide ELF ARM - Heap buffer overflow - Wilderness 1% 20 120 pickle 0
pas_valide ELF ARM - Heap Overflow 1% 23 120 pickle 0
pas_valide ELF x64 - Seccomp Whitelist 1% 34 120 pickle 0
pas_valide ELF x86 - Blind ROP 1% 66 120 franb 0
pas_valide Linkern x64 - Memory exploration 1% 63 120 franb 0
pas_valide ELF x64 - Remote Heap buffer overflow 2 1% 74 130 Tosh, Fritz 0
pas_valide ELF x64 - Blind ROP 1% 42 135 franb 0
pas_valide ELF x64 - Browser exploit - BitString 1% 16 135 pickle 0