The goal with format string testing is to try to inject input into the format string specifier of certain function calls. Refer to Chapter 9.
Sample Test Cases | |
---|---|
Test Case | Description |
n n n n | A long string of n sequences will alter the stack. |
s s s s | Some implementations don t support n. |
d and x | Other common identifiers that could lead to problems. |
Review functions | By examining use of functions in Table 9-1 of Chapter 9, Format String Attacks, you can spot these attacks. |