Jump to content
View in the app

A better way to browse. Learn more.
Tuts 4 You

A full-screen app on your home screen with push notifications, badges and more.

To install this app on iOS and iPadOS
  1. Tap the Share icon in Safari
  2. Scroll the menu and tap Add to Home Screen.
  3. Tap Add in the top-right corner.
To install this app on Android
  1. Tap the 3-dot menu (⋮) in the top-right corner of the browser.
  2. Tap Add to Home screen or Install app.
  3. Confirm by tapping Install.

Scylla + Overlapped Headers

waliedassar
waliedassar
in Scylla Imports Reconstruction

Featured Replies

Posted

If you try to FIX DUMP an executable with the IMAGE_NT_HEADERS structure overlapping the IMAGE_DOS_HEADER i.e. the e_lfanew field has a value less than or equal to 0x38 (and of course, greater than or equal to 0x2), the resulting executable is rejected by the windows PE loader.

http://uploadpic.org...p?img=BdtSYOk9l

This is due to Scylla moving the IMAGE_NT_HEADERS at offset 0x40 without updating the "e_lfanew" field.

This was tested with Scylla v0.7 beta 7.

Best Regards

Waliedassar

Edited by waliedassar

@ waliedassar

Wow!You can find a lot of bugs. :)

You seem to be the Indiana Jones of RCE.

greetz

thank you very much waliedassar.

I didn't even know that this is possible.

  • Author

thank you very much waliedassar.

I didn't even know that this is possible.

Files packed with Spack (by Bagie) used to have overlapped headers.

  • Author

Here is a simple executable you can use to test Scylla.
/>http://goo.gl/UlFVH

Edited by waliedassar

Here is a simple executable you can use to test Scylla.

http://goo.gl/UlFVH

Thanks for this valuable info! ;)

I think this little fix is enough for this problem. Only 2 new lines in source code.

Thanks for your help

  • 1 month later...

you can upload the project source code Scylla_v0.7 beta8 thank

Create an account or sign in to comment

Go to topic listing

Configure browser push notifications
Chrome (Android)
  1. Tap the lock icon next to the address bar.
  2. Tap Permissions → Notifications.
  3. Adjust your preference.
Chrome (Desktop)
  1. Click the padlock icon in the address bar.
  2. Select Site settings.
  3. Find Notifications and adjust your preference.