Grump .... stuck ... whine

900 billion dollars were spent on guns this year! Now rumours are spreading that seculas Ltd. is developing an awful laser aided weapon, and that they already have patents pending. Please try to find out what their latest patents are about.

Re: Grump .... stuck ... whine

Post by TheBarkMaster on Wed Feb 04, 2009 2:19 pm
([msg=17393]see Re: Grump .... stuck ... whine[/msg])

I'm stuck here too,
get the file, and cracked the zip but still I don't the form part in the article If anyone could just post a link to or PM me an explanation. So I could at least understand that. That would be very appreciated
TheBarkMaster
New User
New User
 
Posts: 3
Joined: Fri Jan 30, 2009 4:14 pm
Blog: View Blog (0)


Re: Grump .... stuck ... whine

Post by Defience on Sat Feb 07, 2009 11:12 am
([msg=17510]see Re: Grump .... stuck ... whine[/msg])

You need to take the information from the cracked files and apply them to the site. Try reading through them to figure out what they do and how they relate to each other. Then it might help you decide what needs modified. Googling things like 'f*** a***** X**' might give you some ideas ;)
User avatar
Defience
Addict
Addict
 
Posts: 1281
Joined: Thu Jun 12, 2008 3:16 pm
Blog: View Blog (0)


Re: Grump .... stuck ... whine

Post by meandor on Fri Feb 20, 2009 12:05 pm
([msg=18291]see Re: Grump .... stuck ... whine[/msg])

I am at the last login form
[Edited by: Defience--not necessary]

The tutorial says i need to overflow the buffer with a particular character.Can any one give me a hint on the character to be used
meandor
New User
New User
 
Posts: 6
Joined: Fri May 09, 2008 12:58 pm
Blog: View Blog (0)


Re: Grump .... stuck ... whine

Post by Defience on Fri Feb 20, 2009 12:26 pm
([msg=18293]see Re: Grump .... stuck ... whine[/msg])

meandor wrote:I am at the last login form
[Edited by: Defience--not necessary]

The tutorial says i need to overflow the buffer with a particular character.Can any one give me a hint on the character to be used


whY would that be given? Are You sure it's a particular character?
User avatar
Defience
Addict
Addict
 
Posts: 1281
Joined: Thu Jun 12, 2008 3:16 pm
Blog: View Blog (0)


Re: Grump .... stuck ... whine

Post by meandor on Fri Feb 20, 2009 12:54 pm
([msg=18297]see Re: Grump .... stuck ... whine[/msg])

in the tutorial it is given that we need a particular character.
___________________________________________________________________________________________________________________
Exploiting the last login form

This is the buffer overflow part. Go check your ***ll.php script or the forums. You will see a character everyone talks about (near the end of the alphabet). So we need to buffer overflow the password field with that character. So lets start off with 200 *’s (* is that character)
___________________________________________________________________________________________________________________

So i asked about the character.

Does buffer overflow depend on the character given?
It only depends on the size of the data right?
..
meandor
New User
New User
 
Posts: 6
Joined: Fri May 09, 2008 12:58 pm
Blog: View Blog (0)


Re: Grump .... stuck ... whine

Post by Defience on Fri Feb 20, 2009 1:41 pm
([msg=18304]see Re: Grump .... stuck ... whine[/msg])

meandor wrote:in the tutorial it is given that we need a particular character.
___________________________________________________________________________________________________________________
Exploiting the last login form

This is the buffer overflow part. Go check your ***ll.php script or the forums. You will see a character everyone talks about (near the end of the alphabet). So we need to buffer overflow the password field with that character. So lets start off with 200 *’s (* is that character)
___________________________________________________________________________________________________________________

So i asked about the character.

Does buffer overflow depend on the character given?
It only depends on the size of the data right?
..


:) reread what you posted and take a closer look at what I had posted ;)
User avatar
Defience
Addict
Addict
 
Posts: 1281
Joined: Thu Jun 12, 2008 3:16 pm
Blog: View Blog (0)


Re: Grump .... stuck ... whine

Post by meandor on Fri Feb 20, 2009 2:17 pm
([msg=18306]see Re: Grump .... stuck ... whine[/msg])

Thanks for the hint.

Finally completed it
meandor
New User
New User
 
Posts: 6
Joined: Fri May 09, 2008 12:58 pm
Blog: View Blog (0)


Re: Grump .... stuck ... whine

Post by XsP07JtR on Fri Mar 06, 2009 11:15 am
([msg=19421]see Re: Grump .... stuck ... whine[/msg])

Has anybody got past the messages thing recently? I've been trying to solve it for quite a long time now, but with no results, and I'm starting to think that this part of the mission might be broken.

I've passed the following values to the m**a***.php:
Code: Select all
m**u******* = a****
m**p******* = Su********,
f******* = ../../i****.***


I'm quite convinced that these are correct, but I still can't view the messages.
I've put the php script (msga***.php) and i****.htm on my own machine for testing, and passed the three variables to the script (method="post", if it's relevant). The whole thing wouldn't work until I added these lines:

Code: Select all
$m***u******* = $_POST["m***u*******"];
$m***p******* = $_POST["m***p*******"];
$f******* = $_POST["f*******"];


to the .php. After I've done this, everything went smoothly (on my machine, of course).

Am I doing sth wrong, or is the mission broken at this point?
XsP07JtR
New User
New User
 
Posts: 2
Joined: Fri Mar 06, 2009 10:47 am
Blog: View Blog (0)


Re: Grump .... stuck ... whine

Post by Defience on Fri Mar 06, 2009 11:58 am
([msg=19422]see Re: Grump .... stuck ... whine[/msg])

hmm...not sure about that method but maybe you need the underscores?

m**_u******* = a****
m**_p******* = Su** *****,
f******* = ../../i****.***
User avatar
Defience
Addict
Addict
 
Posts: 1281
Joined: Thu Jun 12, 2008 3:16 pm
Blog: View Blog (0)


Re: Grump .... stuck ... whine

Post by XsP07JtR on Fri Mar 06, 2009 2:15 pm
([msg=19428]see Re: Grump .... stuck ... whine[/msg])

There are underscores.

I've checked that without the lines I added, on my local machine the script dies at
Code: Select all
if (strlen($m**_u*******) == 0 || strlen($m**_p*******) == 0 || strlen($f*******) == 0)

like nothing was passed to the script, or like it didn't set $m**_something to be equal to $_POST["m**_something"]... Maybe it does the same on hts? I don't know.
I'm really stuck now.

Edit: I've realised that register globals on my machine was Off, and after turning it On the script works fine without any additional code. Nevertheless, I still can't get past the messages part on hts, though the values I pass to msga***.php work on my pc. I've tried 3 different browsers, different values, both post and get methods... If someone who knows the solution could pm me to see what I'm doing wrong, I'd be grateful.

Edit2: Sry Defience, my mistake; I just miscounted signs when substituting them with *s. I'm sorry if my reply sounded impolite, I didn't mean it.
Still can't finish the mission, though.
XsP07JtR
New User
New User
 
Posts: 2
Joined: Fri Mar 06, 2009 10:47 am
Blog: View Blog (0)


PreviousNext

Return to (Real 15) seculas Ltd.

Who is online

Users browsing this forum: No registered users and 0 guests