UGN Security Forums
My ProfileMember DirectoryLogin
Search our ForumsView our FAQView our Site Rules
View our CalendarView our Active TopicsGo to our Main Page

UGN Security Store

Network Sites UGN Security, The GoNix Initiative, Elite Web Gamers, Back of the Web, EveryDay Helper, VNC Web Design & Development
Sponsored Links
Latest Postings
by Herbert_Sherbert
09/07/15 10:34 AM
Latest Reviews
Topic Options
Rate This Topic
#10304 - 06/10/04 06:49 PM Little Quiz
ninji1234 Offline
Junior Member

Registered: 06/10/04
Posts: 2
Loc: Afha
Hi there,
here is a little quiz for you, i hope you can break it out, enjoy.

Here we go:

It was known, that at one server (bolero) runs a program exchanging secret messages. The client file in order to use this service can be seen here client.c

The client muss type the username and one-time-password, which sent unencrypted and can not be used for the next time.

Meanwhile, part of the Authenticationscomponents from the server is known, and unfortunately only three are arrive with SMS, namely:

 #include <sys/socket.h> #include <netinet/in.h> #include <time.h> #define LISTENPORT 12012 #define MAXLINELEN 128 #define PASSLEN 32 void passwd_gen(char *pass) {int i; 
  return; } int main(int argc, char **argv) {int s; int client; struct sockaddr_in addr; socklen_t addrlen;char *str,*str2; FILE *sock;char password[PASSLEN];char line[MAXLINELEN];
 ;read(client,line,MAXLINELEN);if (strncmp (line,"USER QAEDA",10)) {fclose (sock);close (client);continue;}fflush (sock);fprintf(sock,"USER %s OK, SEND PASSWORD\n",line); 
The Mission:
The program in the server is vulnerable.
modify the client in order to get the secret message without any passwort

Sponsored Links
#10305 - 06/10/04 08:10 PM Re: Little Quiz
jonconley Offline
UGN Super Poster

Registered: 10/08/02
Posts: 955
Loc: Merrill, IA, USA
Don't post topics in multiple forums.

#10306 - 06/11/04 04:27 AM Re: Little Quiz
Ntd Offline

Registered: 01/21/03
Posts: 217
Loc: Melbourne, Victoria, Australia
Oooo i love quizs, too bad i have no idea what to do. Could you some how do a goto and skip the password?


Moderator:  Infinite 
Featured Member
Registered: 03/02/02
Posts: 137
Forum Stats
2158 Members
46 Forums
41462 Topics
76636 Posts

Max Online: 1567 @ 04/25/10 02:20 AM
Top Posters
UGN Security 34624
Gremelin 7193
§intå× 3255
SilentRage 1273
Ice 1146
pergesu 1136
Infinite 1041
jonconley 955
Girlie 908
unreal 860
Newest Members
Herbert_Sherbert, codemauve, Lillysdragon1984, Brewwit, Suri John
2157 Registered Users
Who's Online
0 registered (), 268 Guests and 171 Spiders online.
Key: Admin, Global Mod, Mod
Latest News

  Get Firefox!
Get FireFox!