«
Expand/Collapse
28 items tagged "aslr"
Related tags:
windows [+],
bypassing [+],
buffer overflow [+],
memory layout [+],
leak [+],
kernel [+],
internet explorer user [+],
internet [+],
explorer [+],
dep [+],
code execution [+],
based buffer overflow [+],
x86 [+],
vista [+],
viscom [+],
utility [+],
ufo alien invasion [+],
ufo [+],
stackbf [+],
stack [+],
space layout [+],
security mechanisms [+],
randomization [+],
protection mechanisms [+],
protection [+],
ollie whitehouse [+],
metasploit [+],
memory protection [+],
linux [+],
hat europe [+],
exploit [+],
europe [+],
data execution prevention [+],
control [+],
c stack [+],
black hat [+],
alien [+],
winamp [+],
vupen [+],
txt [+],
small [+],
shellcode [+],
session [+],
security linux [+],
sandbox [+],
read [+],
prosshd [+],
prevention [+],
practical [+],
paper [+],
mitigation technologies [+],
malicious software [+],
local [+],
linux kernel [+],
invasion [+],
hacker [+],
execution [+],
disable [+],
dino dai zovi [+],
data [+],
darknet [+],
code [+],
chrome [+],
bytes [+],
boston [+],
bof [+],
adds [+],
ExploitsVulnerabilities [+]
-
-
15:45
»
Packet Storm Security Recent Files
Most modern day Operating Systems include some form of memory protection such as DEP and ASLR. This article focuses on ASLR, its implementation, limitations and finally various techniques which can be used to circumvent the protection.
-
15:45
»
Packet Storm Security Misc. Files
Most modern day Operating Systems include some form of memory protection such as DEP and ASLR. This article focuses on ASLR, its implementation, limitations and finally various techniques which can be used to circumvent the protection.
-
-
7:41
»
Packet Storm Security Exploits
This Metasploit module exploits a stack based buffer overflow in the Active control file ImageViewer2.OCX by passing a overly long argument to an insecure TifMergeMultiFiles() method. Exploitation results in code execution with the privileges of the user who browsed to the exploit page. The victim will first be required to trust the publisher Viscom Software. This Metasploit module has been designed to bypass DEP and ASLR under XP IE8, Vista and Win7 with Java support.
-
7:41
»
Packet Storm Security Recent Files
This Metasploit module exploits a stack based buffer overflow in the Active control file ImageViewer2.OCX by passing a overly long argument to an insecure TifMergeMultiFiles() method. Exploitation results in code execution with the privileges of the user who browsed to the exploit page. The victim will first be required to trust the publisher Viscom Software. This Metasploit module has been designed to bypass DEP and ASLR under XP IE8, Vista and Win7 with Java support.
-
7:41
»
Packet Storm Security Misc. Files
This Metasploit module exploits a stack based buffer overflow in the Active control file ImageViewer2.OCX by passing a overly long argument to an insecure TifMergeMultiFiles() method. Exploitation results in code execution with the privileges of the user who browsed to the exploit page. The victim will first be required to trust the publisher Viscom Software. This Metasploit module has been designed to bypass DEP and ASLR under XP IE8, Vista and Win7 with Java support.
-
-
18:42
»
Packet Storm Security Recent Files
Whitepaper called Bypassing Windows 7 Kernel ASLR. In this paper, the author explains every step to code an exploit with a useful kernel ASLR bypass. Successful exploitation is performed on Windows 7 SP0 / SP1.
-
18:42
»
Packet Storm Security Misc. Files
Whitepaper called Bypassing Windows 7 Kernel ASLR. In this paper, the author explains every step to code an exploit with a useful kernel ASLR bypass. Successful exploitation is performed on Windows 7 SP0 / SP1.
-
-
7:52
»
Packet Storm Security Recent Files
Whitepaper called Defeating Data Execution Prevention and ASLR in Windows XP SP3. Data prevention Execution (DEP) and Address space layout randomization (ASLR) are two protection mechanisms integrated in Windows operating system to make more complicated the task of exploiting software. This document show how these two features can be bypassed using different techniques.
-
7:52
»
Packet Storm Security Misc. Files
Whitepaper called Defeating Data Execution Prevention and ASLR in Windows XP SP3. Data prevention Execution (DEP) and Address space layout randomization (ASLR) are two protection mechanisms integrated in Windows operating system to make more complicated the task of exploiting software. This document show how these two features can be bypassed using different techniques.
-
-
14:09
»
Packet Storm Security Advisories
Zero Day Initiative Advisory 11-198 - This vulnerability allows remote attackers to leak information on vulnerable installations of Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within Internet Explorer that allows malicious users to leak information about the memory layout of an Internet Explorer process. When creating a new 'Option' HTML Element, the 'index' field of the object is not set to zero and can be used to leak the location of the global variable table. This can be used to defeat ASLR or to remove the need for heap spraying while exploiting a remote code execution flaw.
-
14:09
»
Packet Storm Security Recent Files
Zero Day Initiative Advisory 11-198 - This vulnerability allows remote attackers to leak information on vulnerable installations of Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within Internet Explorer that allows malicious users to leak information about the memory layout of an Internet Explorer process. When creating a new 'Option' HTML Element, the 'index' field of the object is not set to zero and can be used to leak the location of the global variable table. This can be used to defeat ASLR or to remove the need for heap spraying while exploiting a remote code execution flaw.
-
14:09
»
Packet Storm Security Misc. Files
Zero Day Initiative Advisory 11-198 - This vulnerability allows remote attackers to leak information on vulnerable installations of Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within Internet Explorer that allows malicious users to leak information about the memory layout of an Internet Explorer process. When creating a new 'Option' HTML Element, the 'index' field of the object is not set to zero and can be used to leak the location of the global variable table. This can be used to defeat ASLR or to remove the need for heap spraying while exploiting a remote code execution flaw.
-
-
9:48
»
SecDocs
Authors:
Dino Dai Zovi Tags:
buffer overflow exploiting Event:
Source Conference Boston 2010 Abstract: This session will demonstrate the practical applications of return-oriented techniques for exploit payloads against systems with modern exploit mitigation technologies such as Microsoft's DEP and ASLR as well as the iPhone's non-executable memory and code signing. Most importantly, this session will demonstrate that for defenders it is more important to prevent malicious computations than injection of malicious code. For attackers it is becoming more important to control ESP than EIP.
1337day (was: Inj3ct0r, 1337db)
OSVDB Vulnerabilities
Exploit-DB
SecurityFocus Vulnerabilities
Bugtraq
XSSed
Sophos security news
Penetration Testing
SecuriTeam
BackTrack Linux Forums
Threatpost
carnal0wnage.attackresearch.com
Carnal0wnage
Darknet
The Exploitant
Hack a Day
Wirevolution