CSE 190 -- Lecture 8 -- Apr 15

Internet Worm. fingerd bug explained.

Assignment 3. Given a simulated client-server system, create a client that exploit client-server communications to break into the server. The tar file for the code -- for Solaris -- is available. You have a month to work on this; you may work together in groups of no more than 4 people. Email me the name of your group and its members by next Monday.

Hint: man -s 3e elf, man cc, etc. are all very useful. Start by learning where the buffer is located, and how to write a program that dynamically loads code into a buffer and explicitly passing control to the newly loaded code.

[ CSE home | CSE talks | bsy's home page | webster i/f | yahoo | hotbot | lycos | altavista | pgp key svr | spam | commerce ]
picture of bsy

bsy+cse190@cse.ucsd.edu, last updated Wed Apr 15 20:02:23 PDT 1998.

email bsy

Don't make me hand over my privacy keys!