If I step into the function ___security_init_cookie, and then hit step return, the target will run freely, as if I send a Go command. There are several requirements for this issue:
It must be an x86 binary
The first instruction on the return address is an jmp
Note, this is actually a windbg bug -- that I can reproduce it directly in windbg.
For the following code,
If I step into the function
___security_init_cookie
, and then hit step return, the target will run freely, as if I send aGo
command. There are several requirements for this issue:jmp
Note, this is actually a windbg bug -- that I can reproduce it directly in windbg.