Speak with our analysts today at 1.443.270.2296

Events	Featured News
News Events Engineering Heap Overflows with JavaScript July 28, 2008 Jake Honoroff, Mark Daniel, Charlie Miller, presented at USENIX Workshop on Offensive Technologies (WOOT) 2008 Abstract This paper presents a new technique for exploiting heap over?ows in JavaScript interpreters. Brie?y, given a heap over?ow, JavaScript commands can be used to insure that a function pointer is reliably present for smashing, just after the over?own buffer. A case study serves to highlight the technique: the Safari exploit that the authors used to win the 2008 CanSecWest Pwn2Own contest. Slides	July 1, 2010 Charlie Miller to give talk at Black Hat 2010 in Las Vegas. Read all News Featured Publications 2007 The Legitimate Vulnerability Market: The Secretive World of 0-day Exploit Sales. Read all Publications

Events

Featured News

News

Events

Engineering Heap Overflows with JavaScript

July 28, 2008

Jake Honoroff, Mark Daniel, Charlie Miller, presented at USENIX Workshop on Offensive Technologies (WOOT) 2008

Abstract

This paper presents a new technique for exploiting heap over?ows in JavaScript interpreters. Brie?y, given a heap over?ow, JavaScript commands can be used to insure that a function pointer is reliably present for smashing, just after the over?own buffer. A case study serves to highlight the technique: the Safari exploit that the authors used to win the 2008 CanSecWest Pwn2Own contest.

Slides

July 1, 2010
Charlie Miller to give talk at Black Hat 2010 in Las Vegas.

Read all News

Featured Publications

2007
The Legitimate Vulnerability Market: The Secretive World of 0-day Exploit Sales.

Read all Publications