|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Exploiting heap overflows on XP SP2
nicolas.falliere
gmail.com
Date: Thu Aug 18 2005 - 10:56:20 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Hi,
I describe a new way to exploit heap-based buffer overflows in the following paper:
http://www.packetstormsecurity.com/papers/bypass/bypassing-win-heap-protections.pdf
Basically, one can use critical section related linking structures stored on the process’s default heap to produce a n*4-byte overwrite. Gaining control is another problem, only memory overwrite is discussed in the paper.
NF
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]