Question: The assembly code is dumped from the function checkPass(). This function takes an input string password and checks whether it fits a predefined pattern. Determine

The assembly code is dumped from the function checkPass(). This function takes an input string "password" and checks whether it fits a predefined pattern. Determine what the predefined pattern was and show how you would bypass this checkPass().

Practice 01: 0x08048510 : push ebp 0x08048511 : mov ebp, esp 0x08048513 : mov DWORD PTR [ebp-0x4c],eax 0x0804851c : mov eax,gs:0x14 0x08048522 xor eax, eax 0x08048527 : mov DWORD PTR [ebp-0x48),0x0 0x0804852e mov eax, DWORD PTR [ebp-0x4c] 0x08048531 : mov DWORD PTR [esp+0x4], eax 0x08048535 : lea eax, [ebp-0x44] 0x08048538 : mov DWORD PTR [esp], eax 0x0804853b : call 0x80483d0 0x08048540 : cmp DWORD PTR [ebp-0x48], 0x61 0x08048544 : jne 0x804854d 0x08048546 : m eax, 0x1 0x0804854b : jmp 0x8048569 0x0804854d : movzx eax, BYTE PTR [ebp-0x35] 0x08048551 : cmp al,0x71 0x08048553 : je 0x804855d 0x08048555 : movzx eax, BYTE PTR [ebp-0x3c] 0x08048559 : cmp al, 0x70 0x0804855b : jne 0x8048564 0x0804855d : mov eax, 0x1 0x08048562 jmp 0x8048569 0x08048564 : mov eax, 0x0 0x08048569 : mov eax, DWORD PTR [ebp-0xc] 0x0804856c : xor edx, DWORD PTR gs:0x14 0x08048573 : je 0x804857a 0x08048575 : call 0x80483c0 0x0804857a leave 0x0804857b : ret Practice 01: 0x08048510 : push ebp 0x08048511 : mov ebp, esp 0x08048513 : mov DWORD PTR [ebp-0x4c],eax 0x0804851c : mov eax,gs:0x14 0x08048522 xor eax, eax 0x08048527 : mov DWORD PTR [ebp-0x48),0x0 0x0804852e mov eax, DWORD PTR [ebp-0x4c] 0x08048531 : mov DWORD PTR [esp+0x4], eax 0x08048535 : lea eax, [ebp-0x44] 0x08048538 : mov DWORD PTR [esp], eax 0x0804853b : call 0x80483d0 0x08048540 : cmp DWORD PTR [ebp-0x48], 0x61 0x08048544 : jne 0x804854d 0x08048546 : m eax, 0x1 0x0804854b : jmp 0x8048569 0x0804854d : movzx eax, BYTE PTR [ebp-0x35] 0x08048551 : cmp al,0x71 0x08048553 : je 0x804855d 0x08048555 : movzx eax, BYTE PTR [ebp-0x3c] 0x08048559 : cmp al, 0x70 0x0804855b : jne 0x8048564 0x0804855d : mov eax, 0x1 0x08048562 jmp 0x8048569 0x08048564 : mov eax, 0x0 0x08048569 : mov eax, DWORD PTR [ebp-0xc] 0x0804856c : xor edx, DWORD PTR gs:0x14 0x08048573 : je 0x804857a 0x08048575 : call 0x80483c0 0x0804857a leave 0x0804857b : ret

Step by Step Solution

There are 3 Steps involved in it

1 Expert Approved Answer

Step: 1 Unlock blur-text-image

Question Has Been Solved by an Expert!

Get step-by-step solutions from verified subject matter experts

Step: 2 Unlock

Step: 3 Unlock

Students Have Also Explored These Related Databases Questions!

can someone solve this Modern workstations typically have memory systems that incorporate two or three levels of caching. Explain why they are designed like this. [4 marks] In order to investigate...

This is an assignment that needs to be completed in ocaml. Thank you in advance! I have posted the code necessary to complete it below. Just copy it into a .ml file and use a text editor to edit it....

Provide a summary technical report with your own words about Pipelined Execution which is also named as Instruction Level Parallelism, addressing mainly the following areas: 1. What is Pipelined...

Portray in words what transforms you would have to make to your execution to some degree (a) to accomplish this and remark on the benefits and detriments of this thought.You are approached to compose...

Briefly describe ASCII and Unicode and draw attention to any relationship between them. [3 marks] (b) Briefly explain what a Reader is in the context of reading characters from data. [3 marks] A...

Prolog You are approached to compose a Prolog program to work with twofold trees. Your code shouldn't depend on any library predicates and you ought to expect that the mediator is running without...

Suppose that R(A, B, C) is a relational schema with functional dependencies F = {A, B C, C B}. (i) Is this schema in 3NF? Explain. [2 marks] (ii) Is this schema in BCNF? Explain. [2 marks] (b)...

He want us to identify the 18 vulnerabilities. template is attach. Case No. 2000-02: Recreation, Inc. 1 AICPA Case Development Program RECREATION, INC. AN INFORMATION TECHNOLOGY RISK ASSESSMENT CASE...

Risk Assestment Project - Identify 18 Vulnerabilit AICPA Case Development Program Case No. 2000-02: Recreation, Inc. ? 1 RECREATION, INC. AN INFORMATION TECHNOLOGY RISK ASSESSMENT CASE STUDY OF...

Can you please help me with this case problem? AICPA Case Development Program. Case No. 2000-02: Recreation, Inc Case No. 2000-02: Recreation, Inc. 1 AICPA Case Development Program RECREATION, INC....

Traditionally, unions have been strongest in manufacturing industries. In the United States, unionism reached its peak in 1945, and it has been falling since then. a. How does the changing sect oral...

What is the total of consolidated cost of goods sold? a. $140,000. b. $152,000. c. $132,000. d. $145,000. Use the following data for problem: On January 1, Jarel acquired 80 percent of the...

Jonguim recenty learned about a fund that boasted a 2 5 % return in its marketing materals. Eagerly, he nvested $ 1 0 0 , 0 0 0 without dong any research into the fund. A year later, he hed $ 1 2 5 ,...

8:37 * N. 80% i ... OBJECTIVES: Create relationships Create a Pivot Table from Related Tables Create a PivotChart Modify the PivotChart The major section in this chapter :ontinuation is: Data...