win32 Buffer Overflow
Real Life Vuln-Dev Process of a Win32 Stack Buffer Overflow
Introduction from the paper:
Many times Sergio has been asked for writing a paper about how to code an exploit for win32, for two reasons, first because there are many papers about exploitation on *nix, but few about how to exploit on win32 world, and second because papers about win32 exploitation get very difficult to be understood by people without a good understanding of ASM, C languages. So Sergio thought that the best way to do something clear he had to write something as simple as possible, without leaving nothing to guess by the readers. Well this is what Sergio think is the easiest that he could do. And explaining the hole process of finding, debugging and exploiting a black box application. For this purpose Sergio has chosen ‘War-FTPd v1.65′ a known stack b0f bugged software, which is gonna be used in this tutorial.
view this paper on packetstorm security (pdf format)
February 15, 2007 at 8:07 pm
a good paper “is not” a complete paper.
a good paper “is” a paper which makes you think, and put you in a right direction for further research. a complete paper “is not” going to put you in a right direction because it doesn’t let you think and decide what to do, all of it’s data will be directly injected to your brain. btw a glance at your weblog system; I remembered mine which I have missed a lot. 
be successful
February 18, 2007 at 3:32 pm
It’s nice aricle .
please write about BOF in win32 , more .
be * careful & successful !!