Presentation is loading. Please wait.

Presentation is loading. Please wait.

Nozzle: A Defense Against Heap-spraying Code Injection Attacks Paruj Ratanaworabhan, Cornell University Ben Livshits and Ben Zorn, Microsoft Research (Redmond,

Similar presentations


Presentation on theme: "Nozzle: A Defense Against Heap-spraying Code Injection Attacks Paruj Ratanaworabhan, Cornell University Ben Livshits and Ben Zorn, Microsoft Research (Redmond,"— Presentation transcript:

1 Nozzle: A Defense Against Heap-spraying Code Injection Attacks Paruj Ratanaworabhan, Cornell University Ben Livshits and Ben Zorn, Microsoft Research (Redmond, WA)

2 Heap Spraying is a Problem Firefox 3.5 July 14, Adobe Acrobat/Reader July 23, 2009 Adobe Acrobat / Reader February 19, 2009 Flash July 23, blog.fireeye.com/research/2009/07/actionscript_heap_spray.html Common Element: All vulnerable applications support embedded scripting languages (JavaScript, ActionScript, etc.) Common Element: All vulnerable applications support embedded scripting languages (JavaScript, ActionScript, etc.) 2

3 Drive-By Heap Spraying 3 Owned!

4 Drive-By Heap Spraying (2) 4 shellcode = unescape("%u4343%u4343%...'');

';
Ads by Google