Free Trial

Safari Books Online is a digital library providing on-demand subscription access to thousands of learning resources.

  • Create BookmarkCreate Bookmark
  • Create Note or TagCreate Note or Tag
  • PrintPrint
Share this Page URL
Help

2. Back to the ’90s > 2.2 Exploitation

2.2 Exploitation

To exploit the vulnerability, I performed the following steps:

  • Step 1: Find a sample TiVo movie file.

  • Step 2: Find a code path to reach the vulnerable code.

  • Step 3: Manipulate the TiVo movie file to crash VLC.

  • Step 4: Manipulate the TiVo movie file to gain control of EIP.

Overview of the vulnerability from input to stack buffer overflow

Figure 2-2. Overview of the vulnerability from input to stack buffer overflow

There’s more than one way to exploit a file-format bug. You can create a file with the right format from scratch, or you can manipulate a valid preexisting file. I chose the latter in this example.

Step 1: Find a Sample TiVo Movie File

Note

The website http://samples.mplayerhq.hu/ is a good starting point to search for all kinds of multimedia file-format samples

First I downloaded the following TiVo sample file from http://samples.mplayerhq.hu/:


  

You are currently reading a PREVIEW of this book.

                                                                                                                    

Get instant access to over $1 million worth of books and videos.

  

Start a Free 10-Day Trial


  
  • Safari Books Online
  • Create BookmarkCreate Bookmark
  • Create Note or TagCreate Note or Tag
  • PrintPrint