Buffer overflows in packed code

		Exetools > General > General Discussion
Buffer overflows in packed code

08-21-2009, 04:24

ricnar456

Friend

Join Date: May 2002

Posts: 290

Rept. Given: 1

Rept. Rcvd 28 Times in 10 Posts

Thanks Given: 0

Thanks Rcvd at 52 Times in 40 Posts

the packer change the code section permission with VirtualProtect and put W for unpack the code and write, but when finish the unpacking forget change the permision to RE only and quit W, and jump to execute the code.

All code of the process will be writable if are NOT executable (RE only o viceversa RW only), but the code section will be writable and executable REW, the DEP is bypassed by the packer using VirtualProtect for write the code section, and let the code easy for copy and execute.

ricnar

Tags

buffer overflow, exploit, packer

« Previous Thread | Next Thread »

Posting Rules
You may not post new threads You may not post replies You may not post attachments You may not edit your posts BB code is On Smilies are On [IMG] code is Off HTML code is Off Forum Rules

Similar Threads
Thread	Thread Starter	Forum	Replies	Last Post
Stack Buffer Overflows	Dr.FarFar	General Discussion	0	11-21-2023 18:04
Buffer Overflow in SentinelLM Service	prt	General Discussion	0	03-19-2005 05:20
Creating a buffer overflow ?	Rhodium	General Discussion	6	08-19-2003 04:39

All times are GMT +8. The time now is 16:26.