return-to-lib.c exploit example as request by a user

Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
author: Toni Uhlig <matzeton@googlemail.com> 2021-02-10 18:14:42 +0100
committer: Toni Uhlig <matzeton@googlemail.com> 2021-02-10 18:14:42 +0100
commit: 9b466b6a81149e0f6aa80b4d27f403753a9b1f8c (patch)
tree: 75f5a9a7c8e89cdf18fc92a8b07c196b16c59ffa /overflow.c
parent: ab20c0321d90f055dd999c03bd83cbd01c3788f9 (diff)
1 files changed, 4 insertions, 1 deletions
diff --git a/overflow.c b/overflow.c
index 1d9e4cf..07dc8ab 100644
--- a/overflow.c
+++ b/overflow.c
@@ -9,7 +9,6 @@
 #include <stdio.h>
 #include <string.h>
 
-/* 300 bytes buffer len + 4 bytes for overwrite return opcode */
 #define BUFLEN    300
 
 void
@@ -24,6 +23,10 @@ overflow(const char *src)
 int
 main(int argc, char **argv)
 {
+  /* force system() symbol import for return-to-lib.c exploitation */
+  void * system_fn = system;
+  (void)system_fn;
+
   if (argc > 1) {
       overflow(argv[1]);
   } else {
author	Toni Uhlig <matzeton@googlemail.com>	2021-02-10 18:14:42 +0100
committer	Toni Uhlig <matzeton@googlemail.com>	2021-02-10 18:14:42 +0100
commit	9b466b6a81149e0f6aa80b4d27f403753a9b1f8c (patch)
tree	75f5a9a7c8e89cdf18fc92a8b07c196b16c59ffa /overflow.c
parent	ab20c0321d90f055dd999c03bd83cbd01c3788f9 (diff)