6.1.35 pwn 0CTF2018 heapstorm2

下载文件

题目复现

  1. $ file heapstorm2
  2. heapstorm2: ELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, interpreter /lib64/ld-linux-x86-64.so.2, for GNU/Linux 2.6.32, BuildID[sha1]=875a94fee796b76933b4142702569c3f57adadc9, stripped
  3. $ pwn checksec --file heapstorm2
  4. [*] '/home/firmy/Desktop/heapstorm2/heapstorm2'
  5. Arch: amd64-64-little
  6. RELRO: Full RELRO
  7. Stack: Canary found
  8. NX: NX enabled
  9. PIE: PIE enabled
  10. $ strings libc-2.24.so | grep "GNU C"
  11. GNU C Library (Debian GLIBC 2.24-11+deb9u3) stable release version 2.24, by Roland McGrath et al.
  12. Compiled by GNU CC version 6.3.0 20170516.

题目解析

漏洞利用

参考资料