ESP Is Molested

After the ret instruction is called.. instead of %esp pointing to the beginning of this (where buffer is)
- [buffer][ebp][ret][address][address][address][address]
You'll have this instead in the %esp register
- [address][address][address][address]
which is neat, because well.. of the [ret] that is right before em.

After the ret instruction is called.. instead of %esp pointing to the beginning of this (where buffer is)