[37188] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Exploiting default exception handler to increase exploit

daemon@ATHENA.MIT.EDU (tal zeltzer)
Tue Nov 2 12:42:07 2004

Date: 1 Nov 2004 19:02:56 -0000
Message-ID: <20041101190256.2952.qmail@www.securityfocus.com>
Content-Type: text/plain
Content-Disposition: inline
Content-Transfer-Encoding: binary
MIME-Version: 1.0
From: tal zeltzer <tal.zeltzer@gmail.com>
To: bugtraq@securityfocus.com



Summary:

Every win32 application has a default exception handler which can be abused to increase 
exploit stability in the case of a stack overflow


Impact:

The results of such attack is an exploit with two return addresses

Proof of Concept:

a tutorial And proof of concept code is available at 

http://www.securityforest.com/wiki/index.php/Exploit:_Stack_Overflows_-_Exploiting_default_seh_to_increase_stability

Credit:

Discovered by tal zeltzer.


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[37188] in bugtraq

Exploiting default exception handler to increase exploit

daemon@ATHENA.MIT.EDU (tal zeltzer)Tue Nov 2 12:42:07 2004

daemon@ATHENA.MIT.EDU (tal zeltzer)
Tue Nov 2 12:42:07 2004