Comments on: [3DS CTF] [Exploit 300 – Please, no.] Write up https://0x90r00t.com/2016/12/24/3ds-ctf-exploit-300-please-no-write-up/ 0x90r00t, 0x90r00f Wed, 28 Dec 2016 07:46:23 +0000 hourly 1 https://wordpress.org/?v=6.8.2 By: Macmod https://0x90r00t.com/2016/12/24/3ds-ctf-exploit-300-please-no-write-up/#comment-13763 Wed, 28 Dec 2016 07:46:23 +0000 https://0x90r00t.com/?p=2932/#comment-13763 This might be a good explanation:
http://stackoverflow.com/a/5229135

]]> By: Macmod https://0x90r00t.com/2016/12/24/3ds-ctf-exploit-300-please-no-write-up/#comment-13762 Wed, 28 Dec 2016 07:40:35 +0000 https://0x90r00t.com/?p=2932/#comment-13762 In reply to laxa.

My bad, I erased it by mistake 😛

Perhaps printf is flushing the buffer, but socat holds it? I really have no idea who’s to blame, exactly.

https://gist.github.com/anonymous/6d70a68a8bd4efc4c86c98b28c21f0c3

]]> By: laxa https://0x90r00t.com/2016/12/24/3ds-ctf-exploit-300-please-no-write-up/#comment-13734 Tue, 27 Dec 2016 13:30:33 +0000 https://0x90r00t.com/?p=2932/#comment-13734 In reply to Macmod.

Thanks for pointing that out, your gist has 404 :(.
But the real problem is, why printf does’nt flush when appending a newline ? That’s also bothering me in that case.

]]> By: Macmod https://0x90r00t.com/2016/12/24/3ds-ctf-exploit-300-please-no-write-up/#comment-13691 Mon, 26 Dec 2016 15:25:36 +0000 https://0x90r00t.com/?p=2932/#comment-13691 As an admin pointed out afterwards, the exit is needed because of socat’s behaviour handling SIGSEGV:

https://gist.github.com/Macmod/130e780a69ec6d41d7bd57612314a541

]]>