[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-disclosure] SafeSEH+SEHOP all-at-once bypass explotation method principles

To: full-disclosure@xxxxxxxxxxxxxxxxx
Subject: [Full-disclosure] SafeSEH+SEHOP all-at-once bypass explotation method principles
From: x90c <geinblues@xxxxxxxxx>
Date: Tue, 10 Jan 2012 19:59:50 +0900

Hello,

I wrote this to introduce a small paper for my exploitation method of
SafeSEH+SEHOP bypass in Oct, 2010.
(http://www.x90c.org/SEH all-at-once attack.pdf,
http://www.exploit-db.com/exploits/15184)

Sadly it's not portable. But leave some thoughts about the method.

- SafeSEH+SEHOP all-at-once bypass explotation method principles
  http://www.x90c.org/SafeSEH+SEHOP principles.pdf

- sehop_chain_validation.c (Reverse Engineering code)
  http://www.x90c.org/RE_SEHOP_chain_validation.txt


x90c

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Prev by Date: [Full-disclosure] p0f3 release candidate
Next by Date: Re: [Full-disclosure] Astaro Security Gateway v8.1 - Input Validation Vulnerability
Previous by thread: Re: [Full-disclosure] p0f3 release candidate
Next by thread: [Full-disclosure] [ MDVSA-2012:003 ] apache
Index(es):
- Date
- Thread