(feat): vulnerable code

2022-03-03 21:45:19 -05:00 · 2022-03-03 21:45:19 -05:00 · 9fbee26d4e
commit 9fbee26d4e
parent 5ba7913720
2 changed files with 16 additions and 5 deletions
--- a/2
+++ b/2
@ -1,7 +1,7 @@
 TARGET 	:=	out.bin
 CC	:=	gcc
 STD	:=	c89
-CFLAGS	:= -fno-stack-protector
+CFLAGS	:=	-ggdb -fno-stack-protector

 $(TARGET): clean
 	$(CC) -std=$(STD) $(CFLAGS) draft.c -o $(TARGET)
--- a/draft.c
+++ b/draft.c
@ -1,12 +1,23 @@
-#include <stdio.h> // printf, gets
+#include <stdio.h> /* printf, gets */

-void do_something() {
+#define BUF_SZ 8 /* Something small, easy to exploit */

+void get_rich_fast() {
+	printf("woohoo!!! free money");
+}
+
+void get_input() {
+	/* Declare the buffer we want to put the input in. */
+	char buf[BUF_SZ];
+	/* Deprecated function, gets(char*);
+	 Replaced by "fgets" because of, well, insecurity. */
+	gets(buf);	
 }

 int main() {
-	// Exit code 0.
+	/* Call our horrible function. */
+	get_input();
+	/* Exit code 0. */
 	return 0;
 }

-