Nytro Posted September 24, 2013 Report Share Posted September 24, 2013 Off-By-One Exploitation TutorialAuthored by Saif El-ShereiThis whitepaper is called Off-By-One Exploitation Tutorial. The off by one vulnerability in general means that if an attacker supplied input with certain length if the program has an incorrect length condition the program will write one byte outside the bounds of the space allocated to hold this input causing one of two scenarios depending on the input.Download:http://packetstormsecurity.com/files/download/123361/offbyone-tutorial.pdf Quote Link to comment Share on other sites More sharing options...
AlMalalah Posted September 24, 2013 Report Share Posted September 24, 2013 Nu e acelasi lucru cu BOF sau mi se pare mie ? Quote Link to comment Share on other sites More sharing options...
Nytro Posted September 24, 2013 Author Report Share Posted September 24, 2013 E tot un (stack based in tutorial) buffer overflow, dar la care, din cauza unei mici erori de logica, ai posibilitatea de a depasi buffer-ul doar cu un singur octet. Quote Link to comment Share on other sites More sharing options...