# HG changeset patch
# User Christian Urban <christian dot urban at kcl dot ac dot uk>
# Date 1382449663 -3600
# Node ID 01f7e799e6cef605ff09c59d1d70c0a4a9e8a1b8
# Parent  99d408cfcfb32b94c21868603ff13a2127cbe06d
added slides

diff -r 99d408cfcfb3 -r 01f7e799e6ce slides/slides04.pdf
Binary file slides/slides04.pdf has changed
diff -r 99d408cfcfb3 -r 01f7e799e6ce slides/slides04.tex
--- a/slides/slides04.tex	Tue Oct 22 12:35:11 2013 +0100
+++ b/slides/slides04.tex	Tue Oct 22 14:47:43 2013 +0100
@@ -116,7 +116,7 @@
 
 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
 \begin{frame}[fragile]
-\frametitle{Buffer Overflows}
+\frametitle{D-Link Router, Buffer Overflows}
 
 \begin{verbatim}
 As a proof-of-concept, the following URL allows 
@@ -126,7 +126,7 @@
 
  curl http://<target ip>/post_login.xml?hash=AAA...AAABBBB
 
-The value of the "hash" HTTP GET parameter consists in 
+The value of the "hash" HTTP GET parameter consists of
 292 occurrences of the 'A' character, followed by four 
 occurrences of character 'B'. In our lab setup, characters 
 'B' overwrite the saved program counter (%ra).