Dailydave: Exploit development weirdness

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Dailydave mailing list archives

Exploit development weirdness

From: "RaMatkal" <RaMatkal () hotmail com>
Date: Tue, 27 Dec 2005 14:59:48 +0200

having one of those days....im about ready to put my foot through mycomputer....


writing stack overflow on win32 arc...

i overflow eip with a pop/pop/ret, jump to my bind shellcode and imaway.....all works perfectly but....

when i attach to the process with my debugger and step through the exploit,it works 100% of the time....however, when i try and exploit the serverwithout the debugger attached, the service just seems to crash.....

anyone have any idea what could cause this sort of behaviour? (my shellcodedoesnt use IsDebuggerPresent hehe)anyone have an idea how i can take a look at what is going wrong? remember,when i attach my debugger it works!!!




Thanks in advance,

RaMatkal

By Date By Thread

Current thread:

OffensiveComputing val smith (Dec 09)
- Re: OffensiveComputing Dan Moniz (Dec 09)
- Re: OffensiveComputing Dave Aitel (Dec 10)
  - Re: OffensiveComputing val smith (Dec 10)
  - Re: OffensiveComputing Thorsten Holz (Dec 11)
    - Exploit development weirdness RaMatkal (Dec 27)
    - Re: Exploit development weirdness Dave Aitel (Dec 27)
- Message not available
  - Fwd: OffensiveComputing val smith (Dec 10)
- Message not available
  - Re: OffensiveComputing val smith (Dec 10)
- <Possible follow-ups>
- Re: OffensiveComputing Jeffrey Denton (Dec 10)
  - Re: OffensiveComputing val smith (Dec 10)