Shellphish targetted ForAllSecure running KPRCA_00094 in round 76.

Type 1 POV

eip:0x4238ce - ebx:0xfd45b03f

The application exited with a segmentation fault

0x8049233: 0x8049233 // esp: 0xbaaaae88

Execution control corruption via return (return to: 0xbaaaae88).

Tracing data from eip: 0x8049233 tracing source of memory: 0xbaaaae88 (value: 0x4238ce)

0x804b0e7 : inc ebx
0x804b0e4 : mov byte ptr [ecx+eax],bl
0x804ad53 : mov cl,byte ptr [edx+ebp]
0x804ad56 : mov byte ptr [edi],cl
0x804ad6c : movzx eax,byte ptr [esi+eax+0x18]
0x804ac89 : mov byte ptr [ecx+ebx],al
0x8049233: ret // address: 0xbaaaae88 value: 0x4238ce

Negotiated general register: ebx:0xfd45b03f

Tracing data from eip: 0x8049233 tracing source of register: ebx (value: 0xfd45b03f)

0x804b0e7 : inc ebx
0x804b0e4 : mov byte ptr [ecx+eax],bl
0x804ad53 : mov cl,byte ptr [edx+ebp]
0x804ad56 : mov byte ptr [edi],cl
0x804ad6c : movzx eax,byte ptr [esi+eax+0x18]
0x804ac89 : mov byte ptr [ecx+ebx],al
0x8049231 : pop ebx
0x8049233: ret // address: ebx value: 0xfd45b03f

Curated by Lunge Technology, LLC. Questions or comments? Send us email