Bugtraq mailing list archives
Re: [VulnDiscuss] Preventing exploitation with rebasing
From: Michal Zalewski <lcamtuf () coredump cx>
Date: Mon, 3 Feb 2003 13:49:31 -0800 (PST)
On Mon, 3 Feb 2003, David Litchfield wrote:
Use addresses such as 0x**000000 or 0x00**0000 for the new image base. With there being a NULL in much of the image's address space this will help. (This of course won't make a difference with unicode overflows)
Just FYI, both techniques are somewhat old in the *nix world. NUL in the
address is, among others, implemented by the Openwall kernel patch on
Linux, and PaX randomizes stack and executable base mapping addresses.
--
------------------------- bash$ :(){ :|:&};: --
Michal Zalewski * [http://lcamtuf.coredump.cx]
Did you know that clones never use mirrors?
--------------------------- 2003-02-03 13:45 --
Current thread:
- Re: Preventing exploitation with rebasing, (continued)
- Re: Preventing exploitation with rebasing Alan DeKok (Feb 05)
- Re: Can't Preventing exploitation with rebasing bugtraq (Feb 05)
- Re[2]: Can't Preventing exploitation with rebasing dullien (Feb 05)
- Observation on randomization/rebiasing... Nicholas Weaver (Feb 05)
- RE: Observation on randomization/rebiasing... Jason Coombs (Feb 05)
- Re: Preventing exploitation with rebasing Crispin Cowan (Feb 05)
- Re: Preventing exploitation with rebasing David S Goldberg (Feb 05)
- Re: Preventing exploitation with rebasing Alun Jones (Feb 05)
- Re: Preventing exploitation with rebasing Deus, Attonbitus (Feb 06)
- Re: Preventing exploitation with rebasing Bugtraq User (Feb 05)
- Re: Preventing exploitation with rebasing D.C. van Moolenbroek (Feb 05)
- Re: Preventing exploitation with rebasing Michal Zalewski (Feb 05)
- Re: Preventing exploitation with rebasing Todd Sabin (Feb 05)
- Re: Preventing exploitation with rebasing Seth Breidbart (Feb 06)
- Re: Preventing exploitation with rebasing Richard Moore (Feb 06)
- Re: Preventing exploitation with rebasing Carolyn Meinel (Feb 07)