[framework] Executable Download and Execute - payload
J.M. Seitz
jms at bughunter.ca
Sun Dec 16 11:05:39 CST 2007
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
> I try to exploit some app and in my exploit I overwrite SEH - this shellcode
> does not work for this exploit.
I am not 100% sure what you're saying here: do you mean that you can
successfully control EIP, but the shellcode doesn't execute?
If you are using the typical POP/POP/RET trampoline for your SEH
overwrite, then set a breakpoint on the address of the POP/POP/RET and
make sure that it's actually being hit.
JS
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFHZVrjKEj7ZJktQNsRAjHkAJ9Q2sEsJeGjE0MS9CmwbWQ/kPEjzwCePtbr
2HdJZkt88cwIp5ItUGMMDNo=
=TDTD
-----END PGP SIGNATURE-----
More information about the framework
mailing list