I am studying some format string vulnerabilities these days and i have one question.
Is it possible to read from/write to arbitrary memory locations? I am experiencing some difficulties when the address that i want to specify contains a NULL character (so it is supposed that the format string ends there).
You can easily see that when one needs to write something like the following:
So, is there a way to overcome this difficulty?
Thanks in advance.
PS: Please don't start accusing me of trying to crack-hack-break into an application.
This is knowledge that i want to have, one way or another. The way that i will use it is my own responsibility, and I am the only one to blame if something is illegal. Let's just share knowledge here..