Extbasic 1

[2bitmarksman]

I'm having a bit of trouble understanding what we are supposted to do in Extbasic 1. Are we entering a variable name? Are typing in code that outputs a variable value? Are we reentering that line of code to something that will crash it? Anyone mind clarifying?

[novalyphe]

The value you put in is used as the value for the function.

Your aim is to enter something which will cause it to crash.

[lambda0]

Perhaps reading the tutorial will clear things up a bit :/

[T3hR34p3r]

You are putting in a line of code that the script will read it. The script will read it, process it, and then display the length of the string that YOU put inside of it.

[somand]

I just passed the mission...but.... I don't know how. I crashed the program of course, but I would like to know what is the best method to do it, could anyone PM me?

[southafrica1]

o.k this should help. strcpy is probably the most dangerous command in C. You don't have to enter a command into the box. try to call an element of the array with an index higher than the max set when declaring the array. But you must look at the variable char. char stores a single character such as 1. So if I type 100 in the box it does not mean the value 100 but the value 3 because there are 3 characters in 100.

so you must find out what the max was set at and exceed it by using single characters.(d=1, dd=2 and so on)

[goluhaque]

Wat I don't understand is dat whenever I put in a String in the box & click on "Check", the mission page reloads without the anser. Is it a bug or just a part of the mission?

-- Fri May 08, 2009 3:45 pm --

Wat I don't understand is dat whenever I put in a String in the box & click on "Check", the mission page reloads without the anser. Is it a bug or just a part of the mission?

[ManOfWar]

Alright, my first posting, so I'll try to be as discreet and helpful as possible. Southafrica1 is dead on with his advice. If you read what he posted, you should be able to solve this mission. Remember, the objective of these missions is to LEARN the reasoning behind it, not just knock it out.

Examine the code:

Code: Select all

void blah(char *str) { char lol[200]; strcpy(lol, str); }

Get a grasp for what this code does (remember, google is your friend!). Once you know what this code is doing, you need to find your way to exploit it. Unfortunately, this won't be accomplished by adding code (to the best of my knowledge), as whatever you enter will be a string. This means we will have to find a way to exploit our data type. Once you have an idea of where we're at, the best course of action would be to insert an illegal value into our data type. Remember, if you really want the value out of this mission, you'll do your research. I personally have VERY little experience in C++, and none in C (apart from some similarity between the two). 5 - 10 minutes of reading should be all it takes to learn what you need to know to tackle this mission. Between the information southafrica1 and myself provided, you should have a good idea where to start learning. Apologies if this contains spoilers, I personally just see it as a launch pad for learning the basics.

[Chuck_Norris_RHK]

Examine the code.

Code: Select all

void blah(char *str) { char lol[200]; strcpy(lol, str); }

Look at 'char lol[200]' The answer is right there. (Obviously the answer is not 'char lol[200]' )

I am well aware no one has posted on this for 10days, but I'm sure I could help.

[code2004]

Um yeah, I managed to finish this level... I don't know how, because I didn't enter the right code. I know how to complete this, but would someone tell me how I accidentally completed this... (!?!??!?) xD

Code