Make your own free website on
User Supplied format string bug
More info on format bugs  
Pascal Bouchareine
July 2000
English     Español
Format String Attacks
Tim Newsham
Guardent Inc, September 2000 
Text     PDF
Incomplete text.
Format Bugs: What are they, Where did they come from,...How to exploit them  
English    Español
Exploiting the Libc Locale Subsystem Format String Vulnerability on Solaris/SPARC
Solar Eclipse
November 2000 
Intresting, but the first exploit code for this vulnerability was made by who discover it: CORE SDI
glibc-2.1.2's printf segfaults on unreasonable format string. 
<Mail Archive glibc-buglist> 
Read this, *printf implementation bugs are other way to exploit usfs vulnerability.
 The Open Group, fprintf, printf, snprintf, sprintf - print formatted output  ,Copyright © 1997  
The Single UNIX ® Specification, Version 2 
Learn to use printf after trying to exploit it :)