Shellphish targetted ForAllSecure running KPRCA_00094 in round 73.


Type 1 POV

eip:0xbbe730ee - ebp:0xa88733f1


The application exited with a segmentation fault

0x8049233: 0x8049233 // esp: 0xbaaaae88

Execution control corruption via return (return to: 0xbaaaae88).

Tracing data from eip: 0x8049233 tracing source of memory: 0xbaaaae88 (value: 0xbbe730ee)

0x804b0e7 : inc ebx
0x804b0e4 : mov byte ptr [ecx+eax],bl
0x804ad53 : mov cl,byte ptr [edx+ebp]
0x804ad56 : mov byte ptr [edi],cl
0x804ad6c : movzx eax,byte ptr [esi+eax+0x18]
0x804ac89 : mov byte ptr [ecx+ebx],al
0x8049233: ret // address: 0xbaaaae88 value: 0xbbe730ee

Negotiated general register: ebp:0xa88733f1

Tracing data from eip: 0x8049233 tracing source of register: ebp (value: 0xa88733f1)

0x804b0e7 : inc ebx
0x804b0e4 : mov byte ptr [ecx+eax],bl
0x804ad53 : mov cl,byte ptr [edx+ebp]
0x804ad56 : mov byte ptr [edi],cl
0x804ad6c : movzx eax,byte ptr [esi+eax+0x18]
0x804ac89 : mov byte ptr [ecx+ebx],al
0x8049232 : pop ebp
0x8049233: ret // address: ebp value: 0xa88733f1

Curated by Lunge Technology, LLC. Questions or comments? Send us email