Seh Overwrite And Its Exploitability presented at CanSecWest 2010

by Shuichiro Suzuki (Fourteenforty),

Summary : Shuichiro, who works for Fourteenforty, demonstrated methods to bypass DEP using the Structured Exception handler in Windows. His research provided an interesting viewpoint into methods that can be reproduced reliably. One point he made is that these attacks do not work when ASLR is used in conjunction with DEP.