ELF x64 - Browser exploit - BitString

135 Points  

A bit of browser fun!

Author

pickle,  

Level  Difficulty

Validations

15 Challengers 1%

Note  Notation

23 Votes
To reach this part of the site please login

Solution  Solution


Challenges associated with this section 69 Challenges

Results Challenge's Name Validations Number of points  Explanation for the scores Difficulty  Difficulty Author Note  Notation Solution
pas_valide ELF x86 - Stack buffer overflow basic 1 8% 11369 5 Lyes 11
pas_valide ELF x86 - Stack buffer overflow basic 2 6% 8451 10 Lyes 10
pas_valide ELF x86 - Format string bug basic 1 4% 5613 15 Lu33Y 5
pas_valide ELF x64 - Stack buffer overflow - basic 3% 4117 20 Arod 5
pas_valide ELF x86 - Format string bug basic 2 2% 2757 20 Lyes 5
pas_valide ELF x86 - Race condition 3% 3787 20 Lu33Y 8
pas_valide ELF ARM - Stack buffer overflow - basic 1% 680 25 pickle 7
pas_valide ELF MIPS - Stack buffer overflow - No NX 1% 169 25 franb 2
pas_valide ELF x86 - Stack buffer overflow basic 3 2% 2732 25 Lyes 2
pas_valide ELF x86 - Use After Free - basic 1% 256 25 Esad 2
pas_valide ELF ARM - Stack Spraying 1% 133 30 pickle 4
pas_valide ELF x86 - BSS buffer overflow 3% 2941 30 Lu33Y 6
pas_valide ELF x86 - Stack buffer overflow basic 4 2% 1962 30 Lu33Y 5
pas_valide ELF x86 - Stack buffer overflow basic 6 2% 1585 30 TiWim 4
pas_valide ELF x86 - Format String Bug Basic 3 1% 753 35 Lyes 2
pas_valide ELF ARM - Basic ROP 1% 324 40 pickle 4
pas_valide ELF MIPS - Basic ROP 1% 54 40 dagger 1
pas_valide ELF x86 - Stack buffer overflow - C++ vtables 1% 536 40 sebbb 2
pas_valide ELF x64 - Logic bug 1% 109 50 sbrk 3
pas_valide ELF x86 - Bug Hunting - Several issues 1% 54 50 sbrk 0
pas_valide ELF x86 - Stack buffer and integer overflow 1% 1442 50 Lu33Y 3
pas_valide ELF x86 - Stack buffer overflow - ret2dl_resolve 1% 72 50 kikko 0
pas_valide ELF x86 - Stack buffer overflow basic 5 1% 1322 50 Lu33Y 1
pas_valide ELF x64 - Stack buffer overflow - advanced 1% 741 55 Arod 4
pas_valide ELF MIPS - Format String Glitch 1% 24 60 pickle, martin 0
pas_valide ELF x86 - Information leakage with Stack Smashing Protector 1% 558 60 Arod 2
pas_valide ELF ARM - Race condition 1% 75 70 pickle 1
pas_valide ELF x64 - Browser exploit - Intro 1% 35 70 pickle 1
pas_valide ELF x86 - Out of bounds attack - French Paradox 1% 66 70 sbrk 3
pas_valide ELF x86 - Remote BSS buffer overflow 1% 623 75 Tosh 1
pas_valide ELF x86 - Remote Format String bug 1% 771 75 Tosh 2
pas_valide ELF x64 - Remote heap buffer overflow - fastbin 1% 168 80 franb 1
pas_valide ELF x86 - Blind remote format string bug 1% 206 80 Lyes 1
pas_valide LinKern ARM - vulnerable syscall 1% 72 85 pickle 0
pas_valide LinKern x86 - Buffer overflow basic 1 1% 276 85 franb 2
pas_valide LinKern x86 - Null pointer dereference 1% 286 90 franb 0
pas_valide LinKern x64 - Race condition 1% 181 95 franb 0
pas_valide ELF ARM - Alphanumeric shellcode 1% 22 100 pickle 2
pas_valide ELF MIPS - URLEncoded Format String bug 1% 9 100 pickle 0
pas_valide ELF x86 - Hardened binary 1 1% 507 100 sm0k 3
pas_valide ELF x86 - Hardened binary 2 1% 398 100 sm0k 3
pas_valide ELF x86 - Hardened binary 3 1% 250 100 sm0k 1
pas_valide ELF x86 - Hardened binary 4 1% 281 100 sm0k 2
pas_valide LinKern MIPSel - Vulnerable ioctl 1% 20 100 pickle 0
pas_valide LinKern x64 - reentrant code 1% 96 100 franb 1
pas_valide ELF ARM - Heap format string bug 1% 43 105 franb 0
pas_valide ELF x64 - Sigreturn Oriented Programming 1% 169 105 Arod 3
pas_valide ELF ARM - Format String bug 1% 52 110 pickle 0
pas_valide ELF ARM - Use After Free 1% 48 110 pickle 0
pas_valide ELF x64 - Heap feng-shui 1% 37 110 laxa 2
pas_valide ELF x64 - Off-by-one bug 1% 84 110 NeedToLearn 2
pas_valide ELF x86 - Hardened binary 5 1% 210 110 sm0k 1
pas_valide LinKern ARM - Stack Overflow 1% 29 110 pickle 0
pas_valide LinKern x86 - basic ROP 1% 141 110 franb 1
pas_valide ELF ARM - Heap Off-by-One 1% 30 115 pickle 1
pas_valide ELF x64 - Remote Heap buffer overflow 1 1% 102 115 Tosh 3
pas_valide ELF x86 - Hardened binary 6 1% 197 115 sm0k 3
pas_valide ELF x86 - Hardened binary 7 1% 164 115 Tosh 3
pas_valide ELF x86 - Remote stack buffer overflow - Hardened 1% 92 115 franb 1
pas_valide LinKern x64 - RowHammer 1% 24 115 pickle 0
pas_valide LinKern x64 - SLUB off-by-one 1% 14 115 Tosh 1
pas_valide ELF ARM - Heap buffer overflow - Wilderness 1% 19 120 pickle 1
pas_valide ELF ARM - Heap Overflow 1% 22 120 pickle 0
pas_valide ELF x64 - Seccomp Whitelist 1% 34 120 pickle 0
pas_valide ELF x86 - Blind ROP 1% 61 120 franb 0
pas_valide Linkern x64 - Memory exploration 1% 62 120 franb 1
pas_valide ELF x64 - Remote Heap buffer overflow 2 1% 74 130 Tosh, Fritz 1
pas_valide ELF x64 - Blind ROP 1% 41 135 franb 1
pas_valide ELF x64 - Browser exploit - BitString 1% 15 135 pickle 0