And…we’re back!

by · February 14, 2010

wololo

We are constantly looking for guest bloggers at wololo.net. If you like to write, and have a strong interest in the console hacking scene, contact me either with a comment here, or in a PM on /talk!

10 Responses

  1. H@lo World says:
    February 15, 2010 at 7:00 pm

    important question to u wololo: Is a arithmetic overflow exploitable?

  2. wololo says:
    February 16, 2010 at 12:44 am

    Some times, yes… I’ve seen cases when such an overflow coupled with bad mallocs could do things… but it’s not as easy as a buffer overflow from my (short) experience

  3. H@lo World says:
    February 16, 2010 at 10:52 am

    I got this in psplink by hex editing the tiff crash of CoD3r.
    Does that mean there´s a litle hope?

  4. H@lo World says:
    February 16, 2010 at 11:57 am

    Here a picture of psplink: http://s11b.directupload.net/file/d/2072/lrg285we_jpg.htm
    but it is very dificullt to controll the bytes

  5. wololo says:
    February 16, 2010 at 12:36 pm

    If you have no control on the values of either v0 or v1, probably not very useful… otherwise… well it could be interesting, but it doesn’t look like a simple hack

  6. H@lo World says:
    February 16, 2010 at 1:39 pm

    yes i know, =(
    i´m really interesed in exploit this picture.
    I do this in Hex Editor.Can u plz tell me how to load tiff files in C or ruby?
    on my programm (Dev C++) it looks so: http://s10.directupload.net/file/d/2072/3g4fexi2_jpg.htm

  7. wololo says:
    February 17, 2010 at 12:34 am

    In C:
    1) install libtiff http://www.libtiff.org/
    2) There should be samples in the documentation

  8. H@lo World says:
    February 17, 2010 at 11:48 am

    thank u , i downloaded the setup libtiff and i installed it. But how do i use this now? If i open a tiff image in Dev C it is like before. Have i done something wrong?

  9. wololo says:
    February 17, 2010 at 2:20 pm

    Read the libtiff documentation, I cannot teach you the basics of programming 🙁

  10. H@lo World says:
    February 17, 2010 at 9:49 pm

    a stupid question from me. i meant something else ,but that´s now clear for me 🙂
    Thank you

Follolow:

Featured

Popular Downloads

Archives