ProPolice: best way to fill canary

ALeine aleine at austrosearch.net
Sat Jul 9 00:15:59 GMT 2005


root at Neo-Vortex.net wrote: 

> I was meaning random length fixed value...

That may be what you meant, but that's definitely not what you said.

> and unless the attacker wants to set the return address to 0x0...

You may want to read the paper "Four different tricks to bypass StackShield
and StackGuard protection" before making more comments.

http://www.coresecurity.com/files/files/11/StackguardPaper.pdf

ALeine
___________________________________________________________________
WebMail FREE http://mail.austrosearch.net 


More information about the freebsd-hackers mailing list