[Dailydave] From AC re execshield
Jeremy Kelley
jeremy at austin.ibm.com
Mon Nov 20 18:41:10 Local tim 2006
Quoting Dave Aitel (dave at immunityinc.com):
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Andrew Cushman Sent the Following, but from a slightly different
> address than the one he is subscribed under, so the moderator didn't
> see it:
>
> His talk was "New Ways to Attack Applications of Operating Systems under
> Execshield". His talk focused on remote exploitation and subverting
> execshield on fedora v3, 4, and 5 mostly using format string vulns. He
> got around the non executable stack and heap DiD mitigations as well as
> PIE randomization - using return to Library and brute force.
>
> http://x82.inetcop.org/poc.ZIP
HTTP request sent, awaiting response...
404 Not Found 12:40:31 ERROR 404: Not Found.
^^ anyone get that?
-jk
--
Jeremy Kelley <jeremy at austin.ibm.com> Threat Assessment Lead
gpg 1024D/E0DF8B2D 4BC3 B8B5 5B42 CC8E B6A9 2E85 32D3 C51C E0DF 8B2D
That's the problem with science. You've got a bunch of empiricists
trying to describe things of unimaginable wonder. -Bill Watterson
More information about the Dailydave
mailing list