ProPolice: best way to fill canary
ALeine
aleine at austrosearch.net
Sat Jul 9 00:15:59 GMT 2005
root at Neo-Vortex.net wrote:
> I was meaning random length fixed value...
That may be what you meant, but that's definitely not what you said.
> and unless the attacker wants to set the return address to 0x0...
You may want to read the paper "Four different tricks to bypass StackShield
and StackGuard protection" before making more comments.
http://www.coresecurity.com/files/files/11/StackguardPaper.pdf
ALeine
___________________________________________________________________
WebMail FREE http://mail.austrosearch.net
More information about the freebsd-hackers
mailing list