Harry Potter Part 3: Fawkes

Initial Box
ftp access
Port 9898 Banner Grabbing
checking ports
spiker program
Running the spiker
Using debugger to see the crash
Determining offsets
Controlling EIP
Local test
remote execution
misconfiguration note
Dumping ftp traffic
Examining the exploit
Looping for the race condition to succeed

--

--

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store