One Gadget for Exploitation
One gadget is a line of C code: execve(“/bin/sh”, 0, 0);. Apparently, this code spawns a shell. If you are able to find and run it in the memory, you get a shell! See? Easy and powerful!
Fortunately, it exists in Libc. And Libc is used in most programs! Libc is a C library file. The one_gadget tool finds all the occurrences of the code in such files.
from DZone.com Feed https://ift.tt/30l8yXN
No comments:
Post a Comment