May 14th, 2002

q

consider the following program:

int main(int argc, char *argv[]) {
char buf[256];

strcpy(buf, argv[1]);
exit(1);
}

is this code exploitable? supposedly it is, but because of the exit it doesnt seem like i ever get control of eip, i had it segfaulting at some point in time, but i put it down for a while and now i cant figure out what i was doing and have started to doubt its exploitability, any idea's anyone?