C – Remote string format attack exploit – %n Does not seem to write anything on the stack

[As part of a ctf] I am trying to exploit a remote server through a tcp connection. The server is using snprintf() and provides user input as the formatting string. My goal is to dump the stack. Determine the address on the stack of a vari… Continue reading C – Remote string format attack exploit – %n Does not seem to write anything on the stack

A runtime sometimes converts string arguments (or string returns) from WTF-16 to UTF-16 between functions in a call stack. Is this a security concern?

Suppose that we have this code (in TypeScript syntax):
function one(str: string): string {
// do something with the string
return str
}

function two() {
let s = getSomeString() // returns some unknown string that may contain surroga… Continue reading A runtime sometimes converts string arguments (or string returns) from WTF-16 to UTF-16 between functions in a call stack. Is this a security concern?

Can you perform a buffer overflow and a format string attack at the same time?

So I hope I’m phrasing this right. I’m trying to exploit a piece of c code which you can see below.
#include <stdlib.h>
#include <unistd.h>
#include <stdio.h>
#include <string.h>

int user_age;
void secretClub(){
Continue reading Can you perform a buffer overflow and a format string attack at the same time?