Engineering Heap Overflow Exploits with JavaScript

Abstract

This paper presents a new technique for exploiting heap overflows in JavaScript interpreters. Briefly, given a heap overflow, JavaScript commands can be used to insure that a function pointer is reliably present for smashing, just after the overflown buffer. A case study serves to highlight the technique: the Safari exploit that the authors used to win the… (More)

5 Figures and Tables

Topics

Statistics

051020082009201020112012201320142015201620172018
Citations per Year

53 Citations

Semantic Scholar estimates that this publication has 53 citations based on the available data.

See our FAQ for additional information.

  • Presentations referencing similar topics