Shellphish targetted CSDS running YAN01_00015 in round 70.

Type 1 POV

eip:0xac25f21 - ebp:0x58b9aa7a

The application exited with a segmentation fault

0x8048ba9: 0x8048ba9 // esp: 0xbaaaaff8

Execution control corruption via return (return to: 0xbaaaaff8).

Tracing data from eip: 0x8048ba9 tracing source of memory: 0xbaaaaff8 (value: 0xac25f21)

0x804939a : receive syscall (return)
0x804909b : mov bl,byte ptr [esi+ecx]
0x804909e : mov byte ptr [ebp-0x29],bl
0x80490a1 : mov bl,byte ptr [ebp-0x29]
0x80490aa : mov byte ptr [edx+ecx],bl
0x8048ba9: ret // address: 0xbaaaaff8 value: 0xac25f21

Negotiated general register: ebp:0x58b9aa7a

Tracing data from eip: 0x8048ba9 tracing source of register: ebp (value: 0x58b9aa7a)

0x804939a : receive syscall (return)
0x804909b : mov bl,byte ptr [esi+ecx]
0x804909e : mov byte ptr [ebp-0x29],bl
0x80490a1 : mov bl,byte ptr [ebp-0x29]
0x80490aa : mov byte ptr [edx+ecx],bl
0x8048ba8 : pop ebp
0x8048ba9: ret // address: ebp value: 0x58b9aa7a

Curated by Lunge Technology, LLC. Questions or comments? Send us email