摘要
RPC溢出漏洞成为Windows系统安全的巨大威胁。介绍了RPC的原理,研究了RPC中Stub的数据构造和标准,分析了堆结构和堆溢出原理,总结了堆溢出漏洞的利用方法,针对一个RPC堆溢出漏洞分析了利用过程,提出了RPC堆溢出漏洞攻击的防范措施。
The R.PC heap overflow vulnerability has been a great threat to Windows operating system. In this paper the principles of RPC are introduced, the Stub data construction and the NDR syntax are also analyzed. Then this paper emphasizes on the heap structures and the principles of heap overflow analyzing, it also concludes the exploit methods of heap overflow. In allusion to a new vulnerability it analyzes the RPC heap overflow vulnerability exploit, and brings forward the preventive measures.
出处
《微电子学与计算机》
CSCD
北大核心
2007年第6期170-172,175,共4页
Microelectronics & Computer