Dailydave mailing list archives
Re: From AC re execshield
From: Jeremy Kelley <jeremy () austin ibm com>
Date: Mon, 20 Nov 2006 12:41:10 -0600
Quoting Dave Aitel (dave () immunityinc com):
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Andrew Cushman Sent the Following, but from a slightly different address than the one he is subscribed under, so the moderator didn't see it: His talk was "New Ways to Attack Applications of Operating Systems under Execshield". His talk focused on remote exploitation and subverting execshield on fedora v3, 4, and 5 mostly using format string vulns. He got around the non executable stack and heap DiD mitigations as well as PIE randomization - using return to Library and brute force. http://x82.inetcop.org/poc.ZIP
HTTP request sent, awaiting response... 404 Not Found 12:40:31 ERROR 404: Not Found. ^^ anyone get that? -jk -- Jeremy Kelley <jeremy () austin ibm com> Threat Assessment Lead gpg 1024D/E0DF8B2D 4BC3 B8B5 5B42 CC8E B6A9 2E85 32D3 C51C E0DF 8B2D That's the problem with science. You've got a bunch of empiricists trying to describe things of unimaginable wonder. -Bill Watterson _______________________________________________ Dailydave mailing list Dailydave () lists immunitysec com http://lists.immunitysec.com/mailman/listinfo/dailydave
Current thread:
- From AC re execshield Dave Aitel (Nov 20)
- Re: From AC re execshield Jeremy Kelley (Nov 20)
- Re: From AC re execshield endrazine (Nov 20)
- Re: From AC re execshield Jeremy Kelley (Nov 20)