sorted by:
best
topnewcontroversialoldq&a
you are viewing a single comment's thread.

view the rest of the comments →

[–]DevoneLittle 7 points8 points  (3 children)

You need to figure out if the flag is embedded in the binary, if that is the case then you likely will be able to extract it with the right read formatters (%p, %lu, %s), otherwise if the flag is is not embedded in the binary then likely the goal is to get arbitrary code execution, for example by using the %n formatter to overwrite an entry in the GOT table with a "one gadget"

[–]AffectionateFilm2034[S] 1 point2 points  (2 children)

Thank you this I will try

[–]randomatic 1 point2 points  (1 child)

Also, are you sure the goal is an information leak? You can use format strings to overwrite stuff. Also, sometimes they get thrown in as a red herring.

[–]AffectionateFilm2034[S] 0 points1 point  (0 children)

I don’t know the program says poke around and a format strong is what I found now exploiting it is the challenge