<a href="http://g.adspeed.net/ad.php?do=clk&zid=14678&wd=728&ht=90&pair=as" target="_top"><img style="border:0px;" src="http://g.adspeed.net/ad.php?do=img&zid=14678&wd=728&ht=90&pair=as" alt="i" width="728" height="90"/></a>

Nmap Security Scanner

Docs
Security Lists

Full Disclosure

More
Security Tools

Packet crafters

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

edgeos

Vulnerability Development: Re: SEH and overwrite EIP

Re: SEH and overwrite EIP

From: Savio <sena.savio_at_gmail.com>
Date: Sat, 8 Dec 2007 00:54:43 -0200

On 30 Nov 2007 18:38:15 -0000
opexoc_at_gmail.com wrote:

> Hello,
>
>
> I have simple question: assume that there is a buffer overflow
> vulnerability in some program, assume that I want to exploit it. Is
> it big difference beetwen overwriting SEH and EIP?
>

Yes, because you need some special conditions in order to take advantage
of an overwritten SEH pointer. Besides, your goal when you overwrite
SEH is to write arbitrary values to EIP.

Keep digging and you'll spot the difference. :-)

-- 
Savio

Received on Dec 10 2007

This message: [ Message body ]
Next message: jmoss: "Black Hat Briefings Call for Papers"
Previous message: Praburaajan: "HITBSecConf2007 Malaysia Videos Now Available"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]

edgeos