<a href="http://g.adspeed.net/ad.php?do=clk&zid=14678&wd=728&ht=90&pair=as" target="_top"><img style="border:0px;" src="http://g.adspeed.net/ad.php?do=img&zid=14678&wd=728&ht=90&pair=as" alt="i" width="728" height="90"/></a>

Nmap Security Scanner

Docs
Security Lists

Full Disclosure

More
Security Tools

Packet crafters

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

edgeos

Vulnerability Development: Weird shellcode behavior

Weird shellcode behavior

From: <gljuposti_at_gmail.com>
Date: 6 May 2007 17:55:24 -0000

('binary' encoding is not supported, stored as-is) I am building an exploit (heap OF) and I am experiencing different shellcode behavior depending on the parametar I can in no way associate with this problem. For one parametar value the shellcode gets executed correctly, but for the other, there are problems.
For example, the calc.exe shellcode creates a calc.exe process (I can see it in task manager), but its window is never displayed. Some other shellcodes like the add user shellcode don't work at all. I use shellcodes from Metasploit.
The shellcode gets called each time and it hasn't been changed in memory, it just doesn't behave like it should.
Has anyone ever experienced something similar or has any idea why it could happen? This leaves me totaly confused.
TIA
Received on May 06 2007

This message: [ Message body ]
Next message: Jerome Athias: "Re: Weird shellcode behavior"
Previous message: Kototama: "TCP segments reordering and covert channels"
Next in thread: Jerome Athias: "Re: Weird shellcode behavior"
Reply: Jerome Athias: "Re: Weird shellcode behavior"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]

edgeos