Skip to content

Latest commit

 

History

History
 
 

cg_casino

Folders and files

NameName
Last commit message
Last commit date

parent directory

..
README.md
README.md
 
 
cg_casino_97d8082a4c8a6a11f3c19b2d54788a08.tar
cg_casino_97d8082a4c8a6a11f3c19b2d54788a08.tar
 
 

README.md

CG_CASINO - Codegate 2019 Preliminary

A leak of stack address makes it possible to put fake environ variables on the stack. Thus controlling /proc/self/environ leads to arbitrary file upload. Then use LD_PRELOAD to inject shellcode when executing /usr/bin/clear.