ForAllSecure targetted CSDS running CROMU_00073 in round 22.

Type 1 POV

eip:0x7742df18 - esi:0x3c3a22f0

The application exited with a segmentation fault

Tracing data from eip: 0x805032c tracing source of memory: 0xbaaaa000 (value: 0x7742df18)

0x805027d : receive syscall (return)
0x8050313 : mov ecx,dword ptr [edx]
0x8050329 : mov dword ptr [esp],ecx
0x805032c: ret // address: 0xbaaaa000 value: 0x7742df18

Execution control corruption via return (return to: 0xbaaaaf28).

Tracing data from eip: 0x80482c6 tracing source of memory: 0xbaaaaf28 (value: 0x805030b)

0x805027d : receive syscall (return)
0x80483b7 : mov dl,byte ptr [ecx+eax]
0x80483c7 : mov byte ptr [ecx+eax],dl
0x80482c6: ret // address: 0xbaaaaf28 value: 0x805030b

Negotiated general register: esi:0x3c3a22f0

Tracing data from eip: 0x805032c tracing source of register: esi (value: 0x3c3a22f0)

0x805027d : receive syscall (return)
0x805031e : mov esi,dword ptr [edx+0x10]
0x805032c: ret // address: esi value: 0x3c3a22f0

Curated by Lunge Technology, LLC. Questions or comments? Send us email