What additions to 2.6.x has been done that prevents stack-based overflows? Im doing slef studies (to refresh my mind on the matter), and did so for a few years ago too. Worked fine on 2.4. But seems to fail all the time on newer kernels.
I have disabled the following features in order to get it work :
* random stack space (norandmaps in lilo.conf and kernel.randomize_va_space=0 in sysctl)
* noexec=off (in lilo.conf)
* CONFIG_SECCOMP=n
* SECURITY_CAPABILITIES=n
* compile with gcc flags -fno-stack-proctection
Running x86 slackware, with athlon64 cpu, 2gb memory etc
This is what I get when I try to overflow a simple program using gets() - it is supposed to overwrite esp with 41414141 but now I cant get rid 3d which seems to replace the last 41 :
gets_vuln[21092]: segfault at 4141413d ip 080483c0 sp 4141413d error 4 in gets_vuln[8048000+1000]
Any ideas?
Take care.
