Should ARM allow any LDM { ...PC} not just pop

JonathanSalwan / ROPgadget

This tool lets you search your gadgets on your binaries to facilitate your ROP exploitation. ROPgadget supports ELF, PE and Mach-O format on x86, x64, ARM, ARM64, PowerPC, SPARC, MIPS, RISC-V 64, and RISC-V Compressed architectures.

Other

3.93k stars 553 forks source link

Should ARM allow any LDM { ...PC} not just pop #105

Open mumbel opened 7 years ago

mumbel commented 7 years ago

Something like

[\x00-\xff][\x80-\xff][\x10-\x1e\x30-\x3e\x50-\x5e\x70-\7e\x90-\x9e\xb0-\xbe\xd0-\xde\xf0-\xfe][\xe8\xe9]

LDM, always condition, any addressing, any Rn except PC.

JonathanSalwan commented 7 years ago

Go ahead for a PR