First page Back Continue Last page Overview Graphics
J/K, nah really though.. shes hot.
Well.. if we can write over [buffer] and we can write over[ebp] and we can write over [ret], well whats stopping us from writing over a shitload more address space then that. What if perhaps, we placed a pointer to a RET instruction in the first [address] and maybe the second [address] and every other [address] till our [pointer_to_buffer].