FREE Trial
Answered step by step
Verified Expert Solution
Link Copied!

Question

1 Approved Answer

Buffer overflow question Consider level/phase 2 of attacklab for this problem. Shown below is a portion of the stack before getbuf) reads in the exploit,

Buffer overflow questionimage text in transcribed

Consider level/phase 2 of attacklab for this problem. Shown below is a portion of the stack before getbuf) reads in the exploit, and after getbuf() reads in the exploit. Provide the following addresses (2 points each address, 10 points total): The address on the stack where the return address of test is stored. . The address to return to test that is stored on the stack . . The address of touch2, The address on the stack where the exploit is stored. . .The address stored in rsp just before the assembly code in the exploit is executed. Recall the goal of Level 2 was to get CTARGET to execute the code for touch2 rather than returning to test. In this case, however, you must make it appear to touch2 as if you have passed your cookie as its argument. The code for getbuf is shown below, and the code for test is shown on the front of the examm Values after exploit read in Values before exploit read in Address 0x556763f0: 0x0000000000401920 0x0000000000401920 0x556763f8: 0x000000000000fb90 0xc37eled939c7c748 0x55676400: 0x00007ffff7b0 6cea 0x0000000000000000 0x55676408: 0x000000000000fb80 0x0000000000000000 0x55676410: 0x00000000000000f4 0x0000000000000000 0x55676418: 0x0000000055676450 0x0000000000000000 0x55676420: 0x0000000000000000 0x0000000000000000 0x55676428: 0x0000000055586000 0x0000000000000000 0x55676430: 0x0000000000401ae2 0x00000000556763f8 0x55676438: 0x0000000000000001 0x0000000000401958 0x55676440: 0x0000000000402084 0x0000000000402000 0x55676448: 0x0000000000000000 0x0000000000000000 0x55676450: Oxf4f4f4f4f4f4f4f4 0xf4f4f4f4f4f4f4f4 0x55676458: 0xf4f4f4f4f4f4f4f4 0xf4f4f4f4f4f4f4f4 Consider level/phase 2 of attacklab for this problem. Shown below is a portion of the stack before getbuf) reads in the exploit, and after getbuf() reads in the exploit. Provide the following addresses (2 points each address, 10 points total): The address on the stack where the return address of test is stored. . The address to return to test that is stored on the stack . . The address of touch2, The address on the stack where the exploit is stored. . .The address stored in rsp just before the assembly code in the exploit is executed. Recall the goal of Level 2 was to get CTARGET to execute the code for touch2 rather than returning to test. In this case, however, you must make it appear to touch2 as if you have passed your cookie as its argument. The code for getbuf is shown below, and the code for test is shown on the front of the examm Values after exploit read in Values before exploit read in Address 0x556763f0: 0x0000000000401920 0x0000000000401920 0x556763f8: 0x000000000000fb90 0xc37eled939c7c748 0x55676400: 0x00007ffff7b0 6cea 0x0000000000000000 0x55676408: 0x000000000000fb80 0x0000000000000000 0x55676410: 0x00000000000000f4 0x0000000000000000 0x55676418: 0x0000000055676450 0x0000000000000000 0x55676420: 0x0000000000000000 0x0000000000000000 0x55676428: 0x0000000055586000 0x0000000000000000 0x55676430: 0x0000000000401ae2 0x00000000556763f8 0x55676438: 0x0000000000000001 0x0000000000401958 0x55676440: 0x0000000000402084 0x0000000000402000 0x55676448: 0x0000000000000000 0x0000000000000000 0x55676450: Oxf4f4f4f4f4f4f4f4 0xf4f4f4f4f4f4f4f4 0x55676458: 0xf4f4f4f4f4f4f4f4 0xf4f4f4f4f4f4f4f4

Step by Step Solution

There are 3 Steps involved in it

Step: 1

blur-text-image

Get Instant Access to Expert-Tailored Solutions

See step-by-step solutions with expert insights and AI powered tools for academic success

Step: 2

blur-text-image

Step: 3

blur-text-image

Ace Your Homework with AI

Get the answers you need in no time with our AI-driven, step-by-step assistance

Get Started

Recommended Textbook for

Time Series Databases New Ways To Store And Access Data

Time Series Databases New Ways To Store And Access Data

Authors: Ted Dunning, Ellen Friedman

1st Edition

1491914726, 978-1491914724

More Books

Students also viewed these Databases questions

Question

What is an experimental manipulation? A business researcher is hired by a specialty retail firm. The retailer is trying to decide what level of lighting and what temperature it should maintain in its...

Answered: 1 week ago

Question

Explain what is meant by descriptive statistics.

Answered: 1 week ago

Question

KEY QUESTION What is the incidence of an excise tax when demand is highly inelastic? Elastic? What effect does the elasticity of supply have on the incidence of an excise tax? What is the efficiency...

Answered: 1 week ago

Question

I-mart is a discount optical shop that can fill most prescription orders in around 1 hour. The management is analyzing the processes at the store. There currently is one person assigned to each task...

Answered: 1 week ago

Question

Buffer overflow question Consider level/phase 2 of attacklab for this problem. Shown below is a portion of the stack before getbuf) reads in the exploit, and after getbuf() reads in the exploit....

Answered: 1 week ago

Question

Flynn Industries has three activity cost pools and two products. It estimates production 2,000 units of Product BC113 and 1,000 of Product AD908. Having identified its activity cost pools and the...

Answered: 1 week ago

Question

Roxanne likes to fish. She estimates that 30% of the fish she catches are trout, 20% are bass, and 10% are perch. She designs a simulation. Let 0, 1, and 2 represent trout. Let 3 and 4 represent...

Answered: 1 week ago

Question

Imagine you work for a leader who does not simply tell everyone what to do but instead carefully considers the relationships among teams and networks and how those relationships play a role in the...

Answered: 1 week ago

Question

The following transactions relate to the General Fund of the City of Buffalo Falls for the year ended December 31, 2020: 1. Beginning balances were: Cash, $102,000; Taxes Receivable, $203,000;...

Answered: 1 week ago

Question

Can you please break this down Single Plantwide Factory Overhead Rate Scrumptious Snacks Inc. manufactures three types of snack foods: tortilla chips, potato chips, and pretzels. The company has...

Answered: 1 week ago

Question

Milden Company is a merchandiser that plans to sell 43,000 units during the next quarter at a selling price of $67 per unit. The company also gathered the following cost estimates for the next...

Answered: 1 week ago

Question

Go to the website of the Federal Reserve Bank of St. Louis (http://www.stlouisfed.org) to find some information about the Fed. Find a map of the Federal Reserve districts. If you live in the United...

Answered: 1 week ago

Question

Suppose that the T-account for First National Bank is as follows: Assets Liabilities Reserves $100,000 Deposits $500,000 Loans 400,000 a. If the Fed requires banks to hold 5 percent of deposits as...

Answered: 1 week ago

Question

Imagine that you intend to buy a portfolio of ten stocks with some of your savings. Should the stocks be of companies in the same industry? Should the stocks be of companies located in the same...

Answered: 1 week ago

Previous Question Next Question