Being safe on the internet (was Re: Here we go again - ISP DPI, but is it interception?)
Jon Ribbens
jon+ukcrypto at unequivocal.co.uk
Tue Aug 10 13:16:16 BST 2010
On Tue, Aug 10, 2010 at 01:11:51PM +0100, Peter Tomlinson wrote:
>> The code thinks it's going to write, say, a string of 20 bytes, so the
>> stack pointer is reduced by 20 bytes to provide this space. The code
>> is then persuaded to write a string, started at the lowest address of
>> that space and continuing upwards, of more than 20 bytes, thus
>> overwriting the older/higher part of the stack.
> That is a method that is just asking for trouble...
Possibly true, but that's how it works.
More information about the ukcrypto
mailing list