Memory Corruption Attacks: The (almost) Complete History...

Presented at Black Hat USA 2010, July 29, 2010, 10 a.m. (60 minutes)

Buffer Overflows, Stack Smashes and Memory Corruption Attacks have been the info sec headline stealers for the better part of 3 decades. Sadly, poor record keeping (and dismal regard for attribution of prior research) has resulted in huge gaps in our "hacker folklore". It has also resulted in several re-inventions of the wheel. This talk traces the history of memory corruption attacks and defenses, from the Morris Worm of 1988 to the awesome Pointer Inference work published by Blazakis in 2010. We will demonstrate with code samples, live demo's (and pretty pictures) the progression of these attacks, how they work, when they first came to light, and the mitigations that have been developed and deployed to thwart them. * For the most part we focus on the Windows & Linux on the X86 Platform.

Presenters:

• Haroon Meer

Links:

• https://www.blackhat.com/html/bh-us-10/bh-us-10-archives.html#Meer
• https://media.blackhat.com/bh-us-10/whitepapers/Meer/BlackHat-USA-2010-Meer-History-of-Memory-Corruption-Attacks-wp.pdf

Similar Presentations:

• 30C3 (2013) / WarGames in memory: what is the winning move?
• ShmooCon XII (2016) / Exploiting Memory Corruption Vulnerabilities on the FreeRTOS Operating System
• DEF CON 15 (2007) / (un)Smashing the Stack: Overflows, Countermeasures, and the Real World