DIY Electronic projects
The PIC Buffer Overflow - Printable Version

+- DIY Electronic projects (https://forum.yu3ma.net)
+-- Forum: IT (https://forum.yu3ma.net/forumdisplay.php?fid=63)
+--- Forum: Sigurnost i zaštita (https://forum.yu3ma.net/forumdisplay.php?fid=64)
+--- Thread: The PIC Buffer Overflow (/showthread.php?tid=1926)



The PIC Buffer Overflow - 1van - 06-12-2018

Quote:Introduction

As, injecting RF4CE packets was possible, I started fuzzing the STB by sending it crafted packets.

I quickly noticed that sending large RF4CE data frames was sometimes having surprising effects on the PIC. Depending on the length and content of the payload data, the microcontroller was sometimes freezing or even resetting.

It obviously looked like a buffer overflow. But how to exploit a buffer overflow on a PIC microcontroller? Is there anything “evil” to achieve considering this PIC is only used for basic functions?

To answer these questions, I’ll first have to introduce basics of the PIC Enhanced Midrange architecture. Readers already familiar with it may feel free to skip this section. I’ll then highlight points that make “exploiting” a buffer overflow on such a device tricky.

Detalji: https://courk.cc/index.php/2018/06/01/a-remote-vulnerability/