
New memory corruption attacks: why can't we have nice things? - gannimo, npc@berkeley.edu
32c3 - Security - 12/27/2015
Memory corruption is an ongoing problem and in past years we have both developed a set of defense mechanisms and novel attacks against those defense mechanisms. Novel defense mechanisms like Control-Flow Integrity (CFI) and Code-Pointer Integrity (CPI) promise to stop control-flow hijack attacks. We show that, while they make attacks harder, attacks often remain possible. Introducing novel attack mechanisms, like Control-Flow Bending (CFB), we discuss limitations of the current approaches. CFB is a generalization of data-only attacks that allows an attacker to execute code even if a defense mechanism significantly constrains execution.
Share this talk:https://c3stream.de/Info?guid=777ec642-2866-4617-9789-91cba4a2b313