ELF x86 - Blind remote format string bug

80 Points  0x0

Compromission du service réseau sans accès au binaire ou code source

Auteur

Lyes,  

Niveau  Difficulté

Validations

218 Challengeurs 1%

Note  Notation

39 votes

Pour accéder à cette partie du site, veuillez vous authentifier
Vous devez valider ce challenge pour consulter les solutions

 75 Challenges

Résultats Nom Validations Nombre de points  Explications sur les scores Difficulté  Difficulté Auteur Note  Notation Solution
pas_valide ELF x86 - Stack buffer overflow basic 1 8% 13217 5 Lyes 9
pas_valide ELF x86 - Stack buffer overflow basic 2 6% 9600 10 Lyes 6
pas_valide PE32 - Stack buffer overflow basic 1% 249 10 Ech0 3
pas_valide ELF x86 - Format string bug basic 1 4% 6282 15 Lu33Y 7
pas_valide ELF x64 - Stack buffer overflow - basic 3% 4712 20 Arod 9
pas_valide ELF x86 - Format string bug basic 2 2% 3088 20 Lyes 7
pas_valide ELF x86 - Race condition 3% 4286 20 Lu33Y 11
pas_valide ELF ARM - Stack buffer overflow - basic 1% 810 25 pickle 5
pas_valide ELF MIPS - Stack buffer overflow - No NX 1% 238 25 franb 4
pas_valide ELF x86 - Stack buffer overflow basic 3 2% 3082 25 Lyes 5
pas_valide ELF x86 - Use After Free - basic 1% 611 25 Esad 2
pas_valide PE32 - Stack buffer overflow avancé 1% 38 25 Ech0 3
pas_valide PE32+ Egg Hunter 1% 9 25 Ech0 1
pas_valide ELF ARM - Stack Spraying 1% 146 30 pickle 5
pas_valide ELF x86 - BSS buffer overflow 2% 3114 30 Lu33Y 7
pas_valide ELF x86 - Stack buffer overflow basic 4 2% 2069 30 Lu33Y 4
pas_valide ELF x86 - Stack buffer overflow basic 6 2% 1802 30 TiWim 6
pas_valide ELF x86 - Format String Bug Basic 3 1% 818 35 Lyes 7
pas_valide ELF ARM - Basic ROP 1% 410 40 pickle 4
pas_valide ELF MIPS - Basic ROP 1% 73 40 dagger 3
pas_valide ELF x86 - Stack buffer overflow - C++ vtables 1% 584 40 sebbb 6
pas_valide ELF x64 - Logic bug 1% 127 50 sbrk 4
pas_valide ELF x86 - Bug Hunting - Plusieurs problèmes 1% 65 50 sbrk 4
pas_valide ELF x86 - Stack buffer and integer overflow 1% 1507 50 Lu33Y 4
pas_valide ELF x86 - Stack buffer overflow - ret2dl_resolve 1% 105 50 kikko 2
pas_valide ELF x86 - Stack buffer overflow basic 5 1% 1376 50 Lu33Y 5
pas_valide ELF x64 - Stack buffer overflow - avancé 1% 841 55 Arod 10
pas_valide ELF MIPS - Format String Glitch 1% 33 60 pickle, martin 2
pas_valide ELF x86 - Information leakage with Stack Smashing Protector 1% 617 60 Arod 3
pas_valide ELF ARM - Race condition 1% 89 70 pickle 3
pas_valide ELF x64 - Browser exploit - Intro 1% 46 70 pickle 2
pas_valide ELF x86 - Out of bounds attack - French Paradox 1% 73 70 sbrk 4
pas_valide ELF x86 - Remote BSS buffer overflow 1% 648 75 Tosh 4
pas_valide ELF x86 - Remote Format String bug 1% 797 75 Tosh 4
pas_valide PE32+ Basic ROP 1% 1 75 Ech0 0
pas_valide ELF x64 - Remote heap buffer overflow - fastbin 1% 187 80 franb 2
pas_valide ELF x86 - Blind remote format string bug 1% 218 80 Lyes 5
pas_valide LinKern ARM - syscall vulnérable 1% 80 85 pickle 3
pas_valide LinKern x86 - Buffer overflow basic 1 1% 313 85 franb 5
pas_valide LinKern x86 - Null pointer dereference 1% 323 90 franb 1
pas_valide LinKern x64 - Race condition 1% 196 95 franb 1
pas_valide ELF ARM - Shellcode alphanumérique 1% 25 100 pickle 1
pas_valide ELF MIPS - URLEncoded Format String bug 1% 16 100 pickle 1
pas_valide ELF x86 - Hardened binary 1 1% 543 100 sm0k 8
pas_valide ELF x86 - Hardened binary 2 1% 431 100 sm0k 9
pas_valide ELF x86 - Hardened binary 3 1% 273 100 sm0k 5
pas_valide ELF x86 - Hardened binary 4 1% 309 100 sm0k 10
pas_valide LinKern MIPSel - Vulnerable ioctl 1% 28 100 pickle 1
pas_valide LinKern x64 - code réentrant 1% 104 100 franb 1
pas_valide ELF ARM - Heap format string bug 1% 50 105 franb 2
pas_valide ELF x64 - Sigreturn Oriented Programming 1% 176 105 Arod 5
pas_valide ELF ARM - Format String bug 1% 59 110 pickle 1
pas_valide ELF ARM - Use After Free 1% 58 110 pickle 1
pas_valide ELF x64 - Heap feng-shui 1% 44 110 laxa 1
pas_valide ELF x64 - Off-by-one bug 1% 91 110 NeedToLearn 3
pas_valide ELF x86 - Hardened binary 5 1% 229 110 sm0k 9
pas_valide LinKern ARM - Stack Overflow 1% 34 110 pickle 1
pas_valide LinKern x86 - basic ROP 1% 156 110 franb 5
pas_valide ELF ARM - Heap Off-by-One 1% 33 115 pickle 1
pas_valide ELF x64 - Remote Heap buffer overflow 1 1% 110 115 Tosh 3
pas_valide ELF x86 - Hardened binary 6 1% 214 115 sm0k 7
pas_valide ELF x86 - Hardened binary 7 1% 178 115 Tosh 6
pas_valide ELF x86 - Remote stack buffer overflow - Hardened 1% 102 115 franb 4
pas_valide LinKern x64 - RowHammer 1% 32 115 pickle 2
pas_valide LinKern x64 - SLUB off-by-one 1% 21 115 Tosh 0
pas_valide ELF ARM - Heap buffer overflow - Wilderness 1% 22 120 pickle 1
pas_valide ELF ARM - Heap Overflow 1% 24 120 pickle 1
pas_valide ELF x64 - Seccomp Whitelist 1% 36 120 pickle 1
pas_valide ELF x86 - Blind ROP 1% 76 120 franb 6
pas_valide Linkern x64 - Memory exploration 1% 69 120 franb 5
pas_valide WinKern x64 - Stack buffer overflow avancé - ROP 1% 1 120 __syscall, Synacktiv 0
pas_valide WinKern x64 - Use After Free 1% 1 120 __syscall, Synacktiv 0
pas_valide ELF x64 - Remote Heap buffer overflow 2 1% 82 130 Tosh, Fritz 2
pas_valide ELF x64 - Blind ROP 1% 48 135 franb 1
pas_valide ELF x64 - Browser exploit - BitString 1% 17 135 pickle 3