Requires that attacker knows original pointer value and can observe new pointer values (malloc return value). This is a bar for sure but doesn't look like a very strong one in many circumstances...
-
-
Show this thread
-
It seems to me that it's the same kind of info an attacker would usually need to defeat heap randomization. Although I guess it defeats heap sprays.
Show this thread
End of conversation
New conversation -
-
-
Yeah I’d say the small size of the tag opens up quite a few small vulnerabilities that are much larger in specific situations.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.