equal
deleted
inserted
replaced
117 Anonymous |
117 Anonymous |
118 |
118 |
119 \end{frame}} |
119 \end{frame}} |
120 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
120 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
121 |
121 |
|
122 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
123 \mode<presentation>{ |
|
124 \begin{frame}[c] |
|
125 |
|
126 \begin{center} |
|
127 \begin{tabular}[t]{c} |
|
128 \includegraphics[scale=1.2]{pics/barrier.jpg}\\ |
|
129 future lectures |
|
130 \end{tabular}\;\;\; |
|
131 \onslide<2>{ |
|
132 \begin{tabular}[t]{c} |
|
133 \includegraphics[scale=0.32]{pics/trainwreck.jpg}\\ |
|
134 today |
|
135 \end{tabular} |
|
136 } |
|
137 \end{center} |
|
138 |
|
139 |
|
140 \end{frame}} |
|
141 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
|
142 |
122 |
143 |
123 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
144 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
124 \mode<presentation>{ |
145 \mode<presentation>{ |
125 \begin{frame}[c] |
146 \begin{frame}[c] |
126 \frametitle{\begin{tabular}{@ {}c@ {}}SmartWater\end{tabular}} |
147 \frametitle{\begin{tabular}{@ {}c@ {}}SmartWater\end{tabular}} |
310 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
331 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
311 \mode<presentation>{ |
332 \mode<presentation>{ |
312 \begin{frame}[c] |
333 \begin{frame}[c] |
313 |
334 |
314 \small |
335 \small |
315 A programmer might be careful, but still introducing vulnerabilities:\bigskip |
336 A programmer might be careful, but still introduce vulnerabilities:\bigskip |
316 |
337 |
317 {\lstset{language=Java}\fontsize{8}{10}\selectfont% |
338 {\lstset{language=Java}\fontsize{8}{10}\selectfont% |
318 \texttt{\lstinputlisting{C2a.c}}} |
339 \texttt{\lstinputlisting{C2a.c}}} |
319 |
340 |
320 |
341 |
328 |
349 |
329 \begin{itemize} |
350 \begin{itemize} |
330 \item the idea is you store some code as part to the buffer |
351 \item the idea is you store some code as part to the buffer |
331 \item you then override the return address to execute this payload\medskip |
352 \item you then override the return address to execute this payload\medskip |
332 \item normally you start a root-shell\pause |
353 \item normally you start a root-shell\pause |
333 \item difficulty is to guess the place where to ``jump'' |
354 \item difficulty is to guess the right place where to ``jump'' |
334 \end{itemize} |
355 \end{itemize} |
335 |
356 |
336 \end{frame}} |
357 \end{frame}} |
337 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
358 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% |
338 |
359 |