I'd be interested in this, but would suggest aiming at local (and possibly remote?) exploits in general, rather than buffer overflows exclusively. +1 on learning Metasploit, as that's something I've wanted to do for a while and never got around to. This'd give impetus to do so. - Sai