Exploiting Format Strings in Windows
Feb 3 · 8 min read
I thought of making a small challenge in exploiting format strings in Windows. This is how it looks, it asks for a filename to open. At first, this might be a bit confusing. There are no vulnerable functions in reading a file. You can see that our first argument to the program is echoed back in the program.
Let’s investigate this inside a debugger. As you can see if argc == 2 the application…


