Memory Retrieval Vulnerabilities
Derek Soeder from eEye Digital Security has recently released a paper on “Memory Retrieval Vulnerabilities“. The paper discusses theoretical coding flaws which may offer an attacker a peak into the heap or stack, or even possibly arbitrary process memory which may allow the creation of more reliable exploits. The paper also includes some nice code examples and demonstrations. You can get the paper here:
Memory Retrieval Vulnerabilities
