in the heap section of the process. After that, they trigger a bug, make the instruction pointer point to the predetermined location, and facilitate the execution of the malicious code.
How to detect and prevent heap spraying?
There are a few ways of detecting and preventing heap spraying :
- The Nozzle Project of Microsoft Research aims to detect and prevent heap spraying.
- The BuBBle is another countermeasure that can be used in detecting and prevention heap spraying. The BuBBle is basically a JavaScript Engine-level countermeasure for heap spraying.
This article gives a brief overview of heap spraying. Interested readers who want to know more about different web application vulnerabilities may want to refer to the book “Web Application Vulnerabilities And Prevention.”
0 Comments