buffer overflow help

hi
i was checking a program for a buffer overflow vulnerability and it was vulnerable.but my question is if i wanted manually to exploit this prog(in the username field)to execute cmd.exe or other prog ,what code would i ente into this field?