This document shows how to conduct a PoC and its test result are shared in brief.
The first part figures out where a certain .dll file is loaded in the current process followed by step 2 that uses the information gathered in step 1 to trigger an exploit that uses some ret2lib technique to disable DEP for our shellcode and then redirects the program flow to the shellcode.
Part one: Evading ASLR
Part two: Evading DEP after an use-after-free vulnerability
This document is a good test result for all security testers who want to exploit applications but donot know were to start from. Reading this and testing it helps us to know how Microsoft Internet explorer works.
Click Here to read full document.
Searches leading to this post:
use after free exploit
Comments on this entry are closed.