Dailydave mailing list archives
Re: Vista SP1
From: Dave Aitel <dave () immunityinc com>
Date: Fri, 25 Apr 2008 10:54:22 -0400
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Dave Aitel wrote: | I've been told (although I did not write that exploit, Kostya did) that | you end up using opcodes in your bytecode stream to get execution. This | would mean that the bytecode stream has to be executable, which SP1 | breaks. Not that this breaks the many other ways you can write the | exploit, but it would make it slightly harder. | | I could be wrong on this | -dave Kostya tells me I'm misunderstood him and that you're only protected from that technique if you've done "OptOut" which is not the default. Still, it would be cool to defeat DEP with this exploit. Perhaps without any x86 at all! - -dave -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFIEfCdtehAhL0gheoRAi0vAJ4srUznlAC+1seavIsrXPMJ59NHLwCeNKVI Y86cPFqo31TsLTGgyultPR8= =dLSe -----END PGP SIGNATURE----- _______________________________________________ Dailydave mailing list Dailydave () lists immunitysec com http://lists.immunitysec.com/mailman/listinfo/dailydave
Current thread:
- Vista SP1 Dave Aitel (Apr 24)
- Re: Vista SP1 Alexander Sotirov (Apr 24)
- Re: Vista SP1 Dave Aitel (Apr 25)
- Re: Vista SP1 Dave Aitel (Apr 25)
- Re: Vista SP1 Robert Hensing (EL CONQUISTADOR) (Apr 25)
- Re: Vista SP1 Kostya Kortchinsky (Apr 25)
- Re: Vista SP1 Alexander Sotirov (Apr 26)
- Re: Vista SP1 Dave Aitel (Apr 25)
- Re: Vista SP1 Alexander Sotirov (Apr 24)