Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Python3 print() Vs Python2 print

Tags:

python

stdout

While working on a buffer overflow exploit I found something really strange. I have successfully found that I need to provide 32 characters before the proper address I want to jump to and that the proper address is 0x08048a37. When I executed

python -c "print '-'*32+'\x37\x8a\x04\x08'" | ./MyExecutable

the exploit resulted in a success. But, when I tried:

python3 -c "print('-'*32+'\x37\x8a\x04\x08')" | ./MyExecutable

it didn't. The executable simply resulted in a Segmentation Fault without jumping to the desired address. In fact, executing

python -c "print '-'*32+'\x37\x8a\x04\x08'"

and

python3 -c "print('-'*32+'\x37\x8a\x04\x08')"

results in two different output on the console. The characters are, of course, not readable but they're visually different.

I wonder why is this happening?

like image 685
7_R3X Avatar asked Oct 22 '17 12:10

7_R3X

People also ask

What is the difference between print in Python 2 and 3?

In Python 2, print is a statement that does not need a parenthesis. In Python 3, print is a function and the values need to be written in parenthesis.

Is print () supported in Python 3?

The print statement is gone in Python 3; the compiler doesn't support it anymore.

What is print in Python2?

Python print() Function The print() function prints the specified message to the screen, or other standard output device. The message can be a string, or any other object, the object will be converted into a string before written to the screen.

1 Answers

The Python 2 code writes bytes, the Python 3 code writes text that is then encoded to bytes. The latter will thus not write the same output; it depends on the codec configured for your pipe.

In Python 3, write bytes to the sys.stdout.buffer object instead:

python3 -c "import sys; sys.stdout.buffer.write(b'-'*32+b'\x37\x8a\x04\x08')"

You may want to manually add the \n newline that print would add.

sys.stdout is a io.TextIOBase object, encoding data written to it to a given codec (usually based on your locale, but when using a pipe, often defaulting to ASCII), before passing it on to the underlying buffer object. The TextIOBase.buffer attribute gives you direct access to the underlying BufferedIOBase object.

like image 133
Martijn Pieters Avatar answered Oct 01 '22 05:10

Martijn Pieters
Sign in to Comment

Related questions

Numpy element-wise dot product
pip install Django on python3.6
Regex: How to find a GUID in a long string?
Django QuerySet object has no attribute 'objects
Get all columns with datetime type using pandas?
How to plot CSV data using matplotlib and pandas in python
How to use Merge layer (concat function) on Keras 2.0.0?
Which pool class should i use prefork, eventlet or gevent in celery?
Creating Custom Tag in PyYAML
Why does ... == True return False in Python 3?
How to plot y=1/x as a single graph [duplicate]
Format x-axis on chart created with pandas plot method
Convert JSON API response to pandas Dataframe
Python class variables or @property
How can I convert bytes object to decimal or binary representation in python?
How to grab all headers from a website using BeautifulSoup?
How to use airflow with Celery
How to implement a smooth clamp function in python?
Flask upload: How to get file name?
How to generate a sphere in 3D Numpy array

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!