[Dailydave] Dangling pointers exploitation

[Matt]

On Wed, 25 Jul 2007, Thomas Ptacek wrote:

> Unitialized automatic variables and use-after-free variables seem
> of-a-kind: you have a pointer who's value seems unpredictable but is
> in fact strongly influenced by the execution environment which is in
> turn often influenced by inputs and timing.

Right. It's almost as if going through the Purify and Insure++
documentation from 10+ years ago is a veritable gold-mine for new types
of exploitable bugs.


--
tangled strands of DNA explain the way that I behave.
http://www.clock.org/~matt