Question: Develop your own exploit for getscore.c , for both Redhat8 and Redhat9. Here is a sample score file if you want to run the program

Develop your own exploit for getscore.c , for both Redhat8 and Redhat9. Here is a sample score file if you want to run the program "normally": score.txt. You can either develop one exploit for each platform or a single exploit for both. You can find the Redhat8 and Redhat9 virtual machines here (Links to an external site.)Links to an external site.. What to submit: source code of your exploit generator, a README file on how to run your generator, and a 1-2 page report documenting how you developed the exploit, so that someone else can follow the report to reproduce the result.

getscore.c:

#include

#include

FILE *scorefile;

int get_score(char *name, char *ssn, char *score);

char* str_prefix(char *prefix, char *str);

int main(int argc, char *argv[])

{

int ruid, euid;

char score[128];

if (argc != 3) {

printf("Usage: getscore name SSN ");

exit(1);

}

time_t current_time = time(NULL);

ruid = getuid ();

euid = geteuid ();

// This is to make sure the logging command will have

// sufficient privilege.

if (setreuid(euid, euid)){

perror("setreuid");

}

scorefile = fopen("score.txt", "r");

if (scorefile == NULL){

printf ("failed to open score file ");

}

else{

if (get_score(argv[1], argv[2], score)){

char command[256];

printf("Invalid user name or SSN. ");

sprintf(command, "echo \"%s: Invalid user name or SSN: %s,%s\"|cat >> error.log",

ctime(¤t_time), argv[1], argv[2]);

if (system(command)){

perror("Logging");

}

exit(-1);

}

printf("Your score is %s ", score);

}

}

int get_score(char *name, char *ssn, char *score)

{

char matching_pattern[128];

char line[128];

char *match_point;

strcpy(matching_pattern, name);

strcat(matching_pattern, ":");

strcat(matching_pattern, ssn);

while (fgets(line, 128, scorefile)!=NULL){

if (match_point=str_prefix(matching_pattern, line)){

if (*match_point++==':'){

while (*match_point!=':'){

*score++=*match_point++;

}

*score=0;

return 0;

}

}

}

return -1;

}

char* str_prefix(char *prefix, char *str){

while (*prefix && *str){

if (*prefix != *str)

return NULL;

prefix++;

str++;

}

return *prefix==0?str:NULL;

}

score.txt:

Mary Doe:123-45-6789:A+:an excellent student

Tom Smith:567-89-1234:B:pay more attention

Step by Step Solution

There are 3 Steps involved in it

1 Expert Approved Answer
Step: 1 Unlock

This question is incomplete because it involves creating an exploit which is typically an activity associated with penetration testing or ethical hack... View full answer

blur-text-image
Question Has Been Solved by an Expert!

Get step-by-step solutions from verified subject matter experts

Step: 2 Unlock
Step: 3 Unlock

Students Have Also Explored These Related Databases Questions!

Q:

CHAPTER 9 Hypothesis Tests CONTENTS 9.4 POPULATION MEAN: UNKNOWN One-Tailed Test Two-Tailed Test Summary and Practical Advice 9.5 POPULATION PROPORTION Summary 9.6 HYPOTHESIS TESTING AND DECISION...

Q:

Jones & Bartlett Learning, LLC. NOT FOR RESALE OR DISTRIBUTION CHAPTER Hot Spot Analysis 10 LEARNING OBJECTIVES C A R R Provide a working definition of a \"hot spot.\" , Be able to explain different...

Q:

AsteroidField: Inheritance In Action For this program, you will use inheritance to develop an Asteroid class that satisfies certain requirements. You will also develop a separate AsteroidField test...

Q:

The Final Project is to develop a simple database system. The database is to handle multiple records, each composed of several fields. The database will store its information to a file, addition and...

Q:

The Final Project is to develop a simple database system. The database is to handle multiple records, each composed of several fields. The database will store its information to a file, addition and...

Q:

*choose any 2 of the student activities to do* Although PAC Resources is a fictional organization, it experiences many of the difficulties common in today's business climate. In response to declining...

Q:

JBR-07575; No of Pages 12 Journal of Business Research xxx (2012) xxx-xxx Contents lists available at SciVerse ScienceDirect Journal of Business Research Organizational innovation as an enabler of...

Q:

Calculate Pearson's correlation coefficient () between the variables Weight and Head in the babyanth.complete data frame using the following formula. Include the correlation value you calculated in a...

Q:

I need help with answering these questions, please. 1) Ryanair is considering increasing its average fares to 45 euros. Give two reasons for and two reasons against. Based on these four items, what...

Q:

HOMEWORK C++ An organization can be applied paying little mind to recovery. Since it is associated with dynamic attacks, focal issue will be area rather than aversion. If a encroachment is perceived...

Q:

Xerox manufactured parts for copy machines in the United States that were shipped to Mexico for assembly. The copiers were designed for sale exclusively in Latin America. All printing on the machines...

Q:

NS Vaccine is considering an investment in a new production facility. For the next 5 years, the company expects to achieve an annual cash flow of $500 million in a boom scenario, $200 million in a...

Q:

Which one of the following is a feature of an efficient market? Question 1 6 options: 1 ) Prohibitively high barriers to entry 2 ) Low trading or transaction costs 3 ) Few buyers and sellers 4 )...

Q:

Hi! I need help coding this in C language please! I also included the skeleton he gave us for it. If you're going to write this in something other than C language please don't, as this class is just...