[Dailydave] Vista SP1
Dave Aitel
dave at immunityinc.com
Fri Apr 25 10:54:22 EDT 2008
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Dave Aitel wrote:
| I've been told (although I did not write that exploit, Kostya did) that
| you end up using opcodes in your bytecode stream to get execution. This
| would mean that the bytecode stream has to be executable, which SP1
| breaks. Not that this breaks the many other ways you can write the
| exploit, but it would make it slightly harder.
|
| I could be wrong on this
| -dave
Kostya tells me I'm misunderstood him and that you're only protected
from that technique if you've done "OptOut" which is not the default.
Still, it would be cool to defeat DEP with this exploit. Perhaps without
any x86 at all!
- -dave
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFIEfCdtehAhL0gheoRAi0vAJ4srUznlAC+1seavIsrXPMJ59NHLwCeNKVI
Y86cPFqo31TsLTGgyultPR8=
=dLSe
-----END PGP SIGNATURE-----
More information about the Dailydave
mailing list