Security Research

by Alexander Sotirov

Navigation

Resources

Latest posts

• Assured Exploitation 2011
• You Should Work for Symantec
• CSAW final challenge
• CSAW reversing challenge
• Darknet design

Archives

• 2011 | 2010 | 2009 | 2008

Follow

• Twitter
• Blog feed

Contact

• alex@sotirov.net
• PGP key

Meet me at

• CanSecWest

  Vancouver, Mar 9-11

• Infiltrate

  Miami Beach, Apr 16-17

Heap Feng Shui in JavaScript

Heap Feng Shui is a new technique for precise manipulation of the browser heap layout using specific sequences of JavaScript allocations. This is implemented as a JavaScript library with functions for setting up the heap in a controlled state before triggering a heap corruption bug. Using this technique makes it possible to exploit very difficult heap corruption vulnerabilities with great reliability and precision.

Downloads

• Paper
• Source code

This paper was presented at BlackHat Europe 2007.