Matches in SemOpenAlex for { <https://semopenalex.org/work/W3208792199> ?p ?o ?g. }
Showing items 1 to 61 of
61
with 100 items per page.
- W3208792199 abstract "Address Space Layout Randomization (ASLR) is de-facto standard exploit mitigation in our daily life software. The simplest idea of unpredictably randomizing memory layout significantly raises the bar for memory exploitation due to the additionally required attack primitives such as information leakage. Ironically, although exceptional, there are rare edge cases where ASLR becomes handy for memory exploitation. In this paper, we dig into such theoretical set of cases and name it as BadASLR. To evaluate if BadASLR can be an actual plausible scenario, we look into real-world bug bounty cases, CTF/wargame challenges. Surprisingly, we found multiple vulnerabilities in commercial software where ASLR becomes handy for attacker. With BadASLR cases, we succeeded in exploiting peculiar vulnerabilities, and received total 10,000 USD as bug bounty reward including one CVE assignment." @default.
- W3208792199 created "2021-11-08" @default.
- W3208792199 creator A5091606131 @default.
- W3208792199 date "2021-01-01" @default.
- W3208792199 modified "2023-09-23" @default.
- W3208792199 title "BadASLR: Exceptional Cases of ASLR Aiding Exploitation" @default.
- W3208792199 cites W1963947298 @default.
- W3208792199 cites W2004877887 @default.
- W3208792199 cites W2027963645 @default.
- W3208792199 cites W2062553811 @default.
- W3208792199 cites W2110137598 @default.
- W3208792199 cites W2132806808 @default.
- W3208792199 cites W2154555738 @default.
- W3208792199 cites W2168843528 @default.
- W3208792199 cites W2537189236 @default.
- W3208792199 cites W2613229705 @default.
- W3208792199 cites W3006595492 @default.
- W3208792199 doi "https://doi.org/10.1007/978-3-030-89432-0_23" @default.
- W3208792199 hasPublicationYear "2021" @default.
- W3208792199 type Work @default.
- W3208792199 sameAs 3208792199 @default.
- W3208792199 citedByCount "0" @default.
- W3208792199 crossrefType "book-chapter" @default.
- W3208792199 hasAuthorship W3208792199A5091606131 @default.
- W3208792199 hasConcept C111919701 @default.
- W3208792199 hasConcept C165696696 @default.
- W3208792199 hasConcept C177264268 @default.
- W3208792199 hasConcept C17744445 @default.
- W3208792199 hasConcept C199360897 @default.
- W3208792199 hasConcept C199539241 @default.
- W3208792199 hasConcept C2777904410 @default.
- W3208792199 hasConcept C2992317946 @default.
- W3208792199 hasConcept C38652104 @default.
- W3208792199 hasConcept C41008148 @default.
- W3208792199 hasConceptScore W3208792199C111919701 @default.
- W3208792199 hasConceptScore W3208792199C165696696 @default.
- W3208792199 hasConceptScore W3208792199C177264268 @default.
- W3208792199 hasConceptScore W3208792199C17744445 @default.
- W3208792199 hasConceptScore W3208792199C199360897 @default.
- W3208792199 hasConceptScore W3208792199C199539241 @default.
- W3208792199 hasConceptScore W3208792199C2777904410 @default.
- W3208792199 hasConceptScore W3208792199C2992317946 @default.
- W3208792199 hasConceptScore W3208792199C38652104 @default.
- W3208792199 hasConceptScore W3208792199C41008148 @default.
- W3208792199 hasLocation W32087921991 @default.
- W3208792199 hasOpenAccess W3208792199 @default.
- W3208792199 hasPrimaryLocation W32087921991 @default.
- W3208792199 hasRelatedWork W11016543 @default.
- W3208792199 hasRelatedWork W12544054 @default.
- W3208792199 hasRelatedWork W1802230 @default.
- W3208792199 hasRelatedWork W2882144 @default.
- W3208792199 hasRelatedWork W5281039 @default.
- W3208792199 hasRelatedWork W5574817 @default.
- W3208792199 hasRelatedWork W563404 @default.
- W3208792199 hasRelatedWork W5963666 @default.
- W3208792199 hasRelatedWork W6008397 @default.
- W3208792199 hasRelatedWork W972044 @default.
- W3208792199 isParatext "false" @default.
- W3208792199 isRetracted "false" @default.
- W3208792199 magId "3208792199" @default.
- W3208792199 workType "book-chapter" @default.