Download Safari Books Online apps: Apple iOS | Android

Entire Site

Safari Books Online

    Free Trial

    Safari Books Online is a digital library providing on-demand subscription access to thousands of learning resources.


    • Create BookmarkCreate Bookmark
    • Create Note or TagCreate Note or Tag
    • DownloadDownload
    • PrintPrint
    Share this Page URL
    Help

    2. Back to the ’90s > 2.2 Exploitation

    2.2 Exploitation

    To exploit the vulnerability, I performed the following steps:

    • Step 1: Find a sample TiVo movie file.

    • Step 2: Find a code path to reach the vulnerable code.

    • Step 3: Manipulate the TiVo movie file to crash VLC.

    • Step 4: Manipulate the TiVo movie file to gain control of EIP.

    Overview of the vulnerability from input to stack buffer overflow

    Figure 2-2. Overview of the vulnerability from input to stack buffer overflow

    There’s more than one way to exploit a file-format bug. You can create a file with the right format from scratch, or you can manipulate a valid preexisting file. I chose the latter in this example.

    Step 1: Find a Sample TiVo Movie File

    Note

    The website http://samples.mplayerhq.hu/ is a good starting point to search for all kinds of multimedia file-format samples

    First I downloaded the following TiVo sample file from http://samples.mplayerhq.hu/:


      

    You are currently reading a PREVIEW of this book.

                                                                                            

    Get instant access to over
    $1 million worth of books and videos.

      

    Start a Free Trial