Vulnerability Development mailing list archives
RE: Finding and exploiting buffer overflows in Windows.
From: Vlad <progman () netvision net il>
Date: Sun, 05 May 2002 20:40:15 +0200
Check out these resources: 1. A Buffer Overflow Study - Attacks & Defenses, by Pierre-Alain FAYOLLE, Vincent GLAUME http://www.enseirb.fr/~glaume/bof/report.pdf ( http://www.enseirb.fr/~glaume/bof/report.html ) 2. Win32 Buffer Overflows, by dark spyrit AKA Barnaby Jack http://www.phrack.com/phrack/55/P55-15 And of course Aleph1's "Smashing the stack for fun and profit" paper. If anyone is aware of more decent paper and/or researches on the subject, please drop me a line. Regards, - Vlad. -----Original Message----- From: John Thornton [mailto:news () hackersdigest com] Sent: Sunday, May 05, 2002 7:10 PM To: vuln-dev () securityfocus com Subject: Finding and exploiting buffer overflows in Windows. I'm looking to do some reading on technics used to locate and exploit buffer overflows on the Windows platform. If you know of a few good resources send them my way. Thanks, -John Thornton Editor in Chief Hacker's Digest Magazine http://www.hackersdigest.com
Current thread:
- Re: trusting user-supplied data (was Re: FreeBSD Security AdvisoryFreeBSD-SA-02:23.stdio) Syzop (May 04)
- Re: trusting user-supplied data (was Re: FreeBSD Security AdvisoryFreeBSD-SA-02:23.stdio) Paul Starzetz (May 04)
- Finding and exploiting buffer overflows in Windows. John Thornton (May 05)
- RE: Finding and exploiting buffer overflows in Windows. Vlad (May 05)
- Re: Finding and exploiting buffer overflows in Windows. Jose Nazario (May 05)
- Finding and exploiting buffer overflows in Windows. John Thornton (May 05)
- Re: trusting user-supplied data (was Re: FreeBSD Security AdvisoryFreeBSD-SA-02:23.stdio) Paul Starzetz (May 04)