From mboxrd@z Thu Jan  1 00:00:00 1970
Content-Type: text/plain
MIME-Version: 1.0 (NeXT Mail 3.3ciscupdate v148.2.1)
From: arisawa@ar.aichi-u.ac.jp
To: 9fans@cse.psu.edu
Subject: Re: [9fans] useful language extension, or no?
References: <200207181450.g6IEoSsJ023181@ducky.net>
Message-Id: <20020719052406.5ED601998C@mail.cse.psu.edu>
Date: Fri, 19 Jul 2002 14:23:56 +0900
Topicbox-Message-UUID: d1d43cc2-eaca-11e9-9e20-41e7f4b1d025

>Nope.  All you have to do is overwrite return addresses and
>data in the stack.  Many programs have code that can be twisted
>to your own ends if you just call it with the right parameters.
Hmm...
I have some questions.
(1) Is the following program one of `Many programs'?
#include <stdio.h>
int main(){
    char buf[BUFSIZ];
    gets(buf);
    puts(buf);
}

(2) Does your strategy require source or binary code
of the target to execute execl() ?
(I cannot imagine how to find the location of execl())

Kenji Arisawa