Vuln Dev
SEH and overwrite EIP Nov 30 2007 06:38PM
opexoc gmail com (1 replies)
Re: SEH and overwrite EIP Dec 08 2007 02:54AM
Savio (sena savio gmail com)
On 30 Nov 2007 18:38:15 -0000
opexoc (at) gmail (dot) com [email concealed] wrote:

> Hello,
>
>
> I have simple question: assume that there is a buffer overflow
> vulnerability in some program, assume that I want to exploit it. Is
> it big difference beetwen overwriting SEH and EIP?
>

Yes, because you need some special conditions in order to take advantage
of an overwritten SEH pointer. Besides, your goal when you overwrite
SEH is to write arbitrary values to EIP.

Keep digging and you'll spot the difference. :-)

--
Savio

[ reply ]


 

Privacy Statement
Copyright 2010, SecurityFocus