Tag: heap-buffer-overflow (11)

CTF > HackTheBox > HTB Cyber Apocalypse CTF 2023: The Cursed Mission

pwn - Runic

Pandora is close to finally arriving at the Pharaoh’s tomb and finding the ancient relic, but she faces a tremendously...

Vulnerability: incorrect string handling - strcpy() on raw read() buffer containing null byte -> heap buffer overflow

heap-exploitation tcache-poisoning got-overwrite heap-buffer-overflow hash-table unsorted-bin-attack

December 24, 2025 • October 22, 2025 • Hard

CTF > DreamHack.io > Wargame

pwn - 721 - Santa claus is coming to town

산타 할아버지는 알고계신대. 누가 착한 앤지 나쁜 앤지 ...??? 어떻게??? 취약점을 찾아 셀을 획득한 후 flag 파일을 읽으세요. 플래그 형식은 DH{…} 입니다.

Vulnerability: arbitrary size allocation; out-of-bound write - improper index check

heap-buffer-overflow out-of-bound arbitrary-size-allocation hook-overwrite

December 23, 2025 • December 18, 2025 • Easy

CTF > Viettel Cyber Security > VCS Passport 2025

pwn

Vulnerability: heap buffer overflow - improper length check in read()

heap-exploitation heap-buffer-overflow tcache-poisoning return-address-overwrite return-oriented-programming

December 22, 2025 • December 20, 2025 • Medium

CTF > Viettel Cyber Security > VCS Passport 2025

node user

Vulnerability: heap buffer overflow - improper buffer check in read()

heap-buffer-overflow

December 22, 2025 • December 20, 2025 • Easy

CTF > Viettel Cyber Security > VCS Passport 2024

PWN1

Vulnerability: stack buffer overflow - improper length check in fget() / heap buffer overflow - improper length check in memcpy()

heap-buffer-overflow stack-buffer-overflow bypass-stack-canary return-address-overwrite

December 22, 2025 • December 12, 2025 • Medium

CTF > CSCV > CSCV 2025 Jeopardy Final

pwn - HeapNote Revenge

I wrote another heap note app and I think it's safe this time. Can you prove me wrong and get...

Vulnerability: integer vulnerability - signed and unsigned conversion -> stack buffer overflow - improper length check

stack-buffer-overflow return-address-overwrite file-stream-oriented-programming bypass-stack-canary heap-buffer-overflow out-of-bound file-pointer integer-vulnerability

December 22, 2025 • November 16, 2025 • Medium

CTF > HackTheBox > HTB Cyber Apocalypse CTF 2025: Tales from Eldoria

pwn - Strategist

To move forward, Sir Alaric requests each member of his team to present their most effective planning strategy. The individual...

Vulnerability: incorrect string handling - strlen() overcount -> heap buffer overflow

heap-exploitation heap-buffer-overflow tcache-poisoning hook-overwrite

December 22, 2025 • October 30, 2025 • Medium

CTF > CSCV > CSCV 2025 Preliminary

pwn - Heap NoteS

Vulnerability: heap buffer overflow - improper length check in gets()

heap-buffer-overflow got-overwrite

December 22, 2025 • October 24, 2025 • Medium

CTF > PicoCTF > picoCTF 2024

pwn - high frequency troubles

Vulnerability: house of orange + heap buffer overflow - improper length check in gets()

heap-exploitation heap-buffer-overflow house-of-orange tcache-poisoning setcontext32 thread-local-storage

December 22, 2025 • October 8, 2025 • Hard

Learning Stuff

Kỹ thuật Heap Exploitation - House of Orange

Tìm hiểu chi tiết về cơ chế hoạt động của kỹ thuật khai thác heap House of Orange.

heap-buffer-overflow unsorted-bin-attack file-pointer house-of-orange glibc223 heap-exploitation file-stream-oriented-programming

December 22, 2025 • October 4, 2025 • Research

CTF > PicoCTF > picoCTF 2024

pwn - heap 0123

Are overflows just a stack concern? | Can you control your overflow? | Can you handle function pointers? | This...

heap-buffer-overflow use-after-free heap-exploitation

December 22, 2025 • September 11, 2025 • Medium