|
the code section of a unpacked program is only RE not W, with upx will be RWE, you can copy your shellcode to this section easily and execute, with ret2libc.
If ASLR code moves, the address is diferent, in diffferents machines, and in you machine change when restart, the code section of high percent of main executable are not affected by ASLR, by example if in your machine start in 401000 in all machines will start in the same address, and is more easy for explotation.
ricnar
sorry for my english again
|