UGN Security Forums
My ProfileMember DirectoryLogin
Search our ForumsView our FAQView our Site Rules
View our CalendarView our Active TopicsGo to our Main Page

UGN Security Store

Network Sites UGN Security, The GoNix Initiative, Elite Web Gamers, Back of the Web, EveryDay Helper, VNC Web Design & Development
Sponsored Links
Latest Postings
by Gremelin
23 minutes 52 seconds ago
Latest Reviews
Topic Options
Rate This Topic
#10304 - 06/10/04 06:49 PM Little Quiz
ninji1234 Offline
Junior Member

Registered: 06/10/04
Posts: 2
Loc: Afha
Hi there,
here is a little quiz for you, i hope you can break it out, enjoy.

Here we go:

It was known, that at one server (bolero) runs a program exchanging secret messages. The client file in order to use this service can be seen here client.c

The client muss type the username and one-time-password, which sent unencrypted and can not be used for the next time.

Meanwhile, part of the Authenticationscomponents from the server is known, and unfortunately only three are arrive with SMS, namely:

 #include <sys/socket.h> #include <netinet/in.h> #include <time.h> #define LISTENPORT 12012 #define MAXLINELEN 128 #define PASSLEN 32 void passwd_gen(char *pass) {int i; 
  return; } int main(int argc, char **argv) {int s; int client; struct sockaddr_in addr; socklen_t addrlen;char *str,*str2; FILE *sock;char password[PASSLEN];char line[MAXLINELEN];
 ;read(client,line,MAXLINELEN);if (strncmp (line,"USER QAEDA",10)) {fclose (sock);close (client);continue;}fflush (sock);fprintf(sock,"USER %s OK, SEND PASSWORD\n",line); 
The Mission:
The program in the server is vulnerable.
modify the client in order to get the secret message without any passwort

Sponsored Links
#10305 - 06/10/04 08:10 PM Re: Little Quiz
jonconley Offline
UGN Super Poster

Registered: 10/08/02
Posts: 955
Loc: Merrill, IA, USA
Don't post topics in multiple forums.

#10306 - 06/11/04 04:27 AM Re: Little Quiz
Ntd Offline

Registered: 01/21/03
Posts: 217
Loc: Melbourne, Victoria, Australia
Oooo i love quizs, too bad i have no idea what to do. Could you some how do a goto and skip the password?


Moderator:  Infinite 
Featured Member
Registered: 09/07/15
Posts: 1
Forum Stats
2158 Members
46 Forums
41486 Topics
76661 Posts

Max Online: 1567 @ 04/25/10 02:20 AM
Top Posters
UGN Security 34648
Gremelin 7194
§intå× 3255
SilentRage 1273
Ice 1146
pergesu 1136
Infinite 1041
jonconley 955
Girlie 908
unreal 860
Newest Members
Jan Havelles, Herbert_Sherbert, codemauve, Lillysdragon1984, Brewwit
2158 Registered Users
Who's Online
1 registered (Gremelin), 178 Guests and 247 Spiders online.
Key: Admin, Global Mod, Mod
Latest News

  Get Firefox!
Get FireFox!