Hosting Provided By

Re: Analyze binary for holes

From: Shaun Clowes <shaun(at)securereality.com.au>
Date: Thu Jul 31 2003 - 20:12:05 EDT

On Thu, Jul 31, 2003 at 10:19:18PM -0000, DownBload wrote:
> In-Reply-To: <20030729162007.7689.qmail@www.securityfocus.com>

Sorry, but this thread is now getting ridiculous, reverse engineering using strings is silly. If you insist on looking for vulnerable functions you should actually look for function imports using the correct tool for the binary file you're looking at, e.g:

$ elfdump -s /bin/ls | grep strcpy

[81] 0x00024190 0x00000000 FUNC GLOB D 0 UNDEF strcpy

If you decide you want to verify those calls you should run the code through a good disassembler (though I guess objdump is pretty much your only option that is free for Solaris) and study the code that provides the parameters (and their origin). Any which way you look at it, doing this well is hard and time consuming work.

Cheers,
Shaun Received on Fri Aug 1 11:51:01 2003

This message: [ Message body ]
Next message: xenophi1e: "Re: Analyze binary for holes"
In reply to DownBload: "Re: Analyze binary for holes"
Next in thread: xenophi1e: "Re: Analyze binary for holes"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 14:07:40 EDT

Do you need help?