-
-
[旧帖] [求助]OllyDbg加载PE文件的问题 0.00雪花
-
发表于: 2009-9-21 23:28
-
我新手,想用软件漏洞分析栈溢出植入代码,软件的代码是从看雪下的:
#include <stdio.h>
#include <windows.h>
#include <process.h>
#define PASSWORD "1234567"
int verify_password (char *password)
{
int authenticated;
char buffer[44];
authenticated=strcmp(password,PASSWORD);
strcpy(buffer,password);//over flowed here!
return authenticated;
}
void main()
{
int valid_flag=0;
char password[1024];
FILE * fp;
LoadLibrary("user32.dll");//prepare for messagebox
if(!(fp=fopen("password.txt","rw+")))
{
exit(0);
}
fscanf(fp,"%s",password);
valid_flag = verify_password(password);
if(valid_flag)
{
printf("incorrect password!\n");
}
else
{
printf("Congratulation! You have passed the verification!\n");
}
fclose(fp);
}
但是,当我想拿到缓冲区地址(也就是buffer[44];)时,odbg总是卡在了c.fscanf上,无法步到缓冲区的填写.
标志位显示ERROR_MOD_NOT_FOUND (0000007E)
我估计是源代码和我编译器的原因,但是具体情况不知道.希望高手帮忙
水平不好,请大家指点,谢谢
#include <stdio.h>
#include <windows.h>
#include <process.h>
#define PASSWORD "1234567"
int verify_password (char *password)
{
int authenticated;
char buffer[44];
authenticated=strcmp(password,PASSWORD);
strcpy(buffer,password);//over flowed here!
return authenticated;
}
void main()
{
int valid_flag=0;
char password[1024];
FILE * fp;
LoadLibrary("user32.dll");//prepare for messagebox
if(!(fp=fopen("password.txt","rw+")))
{
exit(0);
}
fscanf(fp,"%s",password);
valid_flag = verify_password(password);
if(valid_flag)
{
printf("incorrect password!\n");
}
else
{
printf("Congratulation! You have passed the verification!\n");
}
fclose(fp);
}
但是,当我想拿到缓冲区地址(也就是buffer[44];)时,odbg总是卡在了c.fscanf上,无法步到缓冲区的填写.
标志位显示ERROR_MOD_NOT_FOUND (0000007E)
我估计是源代码和我编译器的原因,但是具体情况不知道.希望高手帮忙
水平不好,请大家指点,谢谢
[培训]内核驱动高级班,冲击BAT一流互联网大厂工作,每周日13:00-18:00直播授课
|
|
|---|---|
|
|
|
|
|
password.txt在工程文件夹下是有的,不然也不会卡在fscanf上,而是卡在fopen上了
|
|
|
|
