About

Stack clash is an exploit which utilized large frame allocations to "jump the guard page" creating a scenario where the heap and stack collided under attacker control. This can be used to gain full control of a vulnerable application. Stack probing techniques can be used to mitigate the vast majority of vulnerabilities in this space, but implementing them requires significant work for each and every target to be supported.

...

Work has not started, but yet, but likely will start before the end of the summer.

Stakeholders/Partners

RISE:

Ventana: Jeff Law

External:

Dependencies

Status

Page Properties

Development

Status


colour	Blue
title	IN PROGRESS

Development Timeline

NA

Upstreaming

Status


colour	Blue
title	NOT STARTED

Upstream Version

Contacts

Jeff Law (Ventana)

Dependencies

None

Updates

28 Jun 2023

Project reported as priority for 1H2024.

...

Versions Compared

Old Version 1

New Version 2

Key

About

Stakeholders/Partners

RISE:

External:

Dependencies

Status

Updates

Page Comparison

Versions Compared

Old Version 1

New Version 2

Key

About

Stakeholders/Partners

RISE:

External:

Dependencies

Status

Updates