[32681] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: [ANNOUNCE] glibc heap protection patch

daemon@ATHENA.MIT.EDU (Marco Ivaldi)
Thu Dec 4 12:50:29 2003

Date: Thu, 4 Dec 2003 16:22:37 +0100 (CET)
From: Marco Ivaldi <raptor@0xdeadbeef.info>
To: bugtraq@securityfocus.com
Message-ID: <Pine.BSO.4.58.0312041608100.17933@voodoo.mediaservice.net>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII

> So, unfortunately I don't think that check alone is sufficient.

For in-depth information about dlmalloc's frontlink() macro exploitation,
check out the excellent paper by MaXX, at:

http://phrack.org/phrack/57/p57-0x08

You can also see an exploitation example of mine (heap/heap2-ex.c) in the
misc-exploits.tgz collection, available at:

http://www.0xdeadbeef.info/code/misc-exploits.tgz

Cheers,

:raptor
-- 
Marco Ivaldi
Antifork Research, Inc.   http://0xdeadbeef.info/
3B05 C9C5 A2DE C3D7 4233  0394 EF85 2008 DBFD B707


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[32681] in bugtraq

Re: [ANNOUNCE] glibc heap protection patch

daemon@ATHENA.MIT.EDU (Marco Ivaldi)Thu Dec 4 12:50:29 2003

daemon@ATHENA.MIT.EDU (Marco Ivaldi)
Thu Dec 4 12:50:29 2003