Black Hat USA 2008 Webcast No. 3 - How To Impress Girls with Browser Memory Protection Bypasses<title> <link rel="shortcut icon" href="../images/favicon.ico" type="image/ico" />  <link rel="stylesheet" href="../bh-css/screen.css" type="text/css" media="screen, projection" /> <link rel="alternate" type="application/rss+xml" title="Black Hat Updates" href="BlackHatRSS.xml" />  </head> <body> <div class="background" > <div class="container"> <div class="column span-24"> <div id="mainNav"> <div><a href="https://www.blackhat.com">home</a></div> <div><a href="../bh-registration/bh-registration.html">registration</a></div> <div><a href="../bh-media-archives/bh-multimedia-archives-index.html">archives</a></div> <div><a href="../bh-press/press.html">press</a></div> <div><a href="../blackpages/blackpages.html">blackpages</a></div> <div><a href="../bh-sponsors/sponsors.html">sponsors</a></div> <div><a class="current" href="webinars-index.html">webcasts</a></div> </div> </div> <div class="column span-24"> <div class="header_webcasts"> <a href="https://www.blackhat.com/BlackHatRSS.xml"><img src="../images/rssfeed.gif" alt="RSS feed logo" class="x" ></a> <img src="../images/masthead.jpg" alt="header graphic" border="0" class="z" /> </div> <div class="column span-5 append-2 last">  <div id="sidebar"> <p><strong>Webcast Details</strong></p> <p class="black"> <span><a href="#">Black Hat Webcast #3</a></span> <br />How To Impress Girls With Browser Memory Protection Bypasses<br /><br /> In our first Black Hat webcast, we've presented several shortened versions of Black Hat presentations. For this USA 08 wrapup webcast, we've decided to present one of our best reviewed talks in its entirety. Whether you missed Sotirov and Dowd's presentation because you were in another talk or in another city altogether, this is a great time to catch up. Bring your questions - there will be a Q&A session to follow<br /><br /> </p> </div> </div> <div class="column span-17 ">  <h1>Black Hat Webcast No. 3</strong></h1> <h2>How To Impress Girls With Browser Memory Protection Bypasses</h2> <h3>Thursday, September 18 1:00 pm PST/4:00 pm ET • FREE</h3> <h4>Speakers: <ul> <li><strong>Jeff Moss</strong>, Founder and Director of Black Hat</li> <li><strong>Alex Sotirov</strong>, Security Researcher, VMware</li> </ul> </h4> <p><strong>Overview:</strong><br /> <p>Over the past several years, Microsoft has implemented a number of memory protection mechanisms with the goal of preventing the reliable exploitation of common software vulnerabilities on the Windows platform. Protection mechanisms such as GS, SafeSEH, DEP and ASLR complicate the exploitation of many memory corruption vulnerabilities and at first sight present an insurmountable obstacle for exploit developers.</p> <p>This talk aims to present exploitation methodologies against this increasingly complex target. We will demonstrate how the inherent design limitations of the protection mechanisms in Windows Vista make them ineffective for preventing the exploitation of memory corruption vulnerabilities in browsers and other client applications.</p> <p>Each of the aforementioned protections will be briefly introduced and its design limitations will be discussed. We will present a variety of techniques that can be used to bypass the protections and achieve reliable remote code execution in many different circumstances. Finally, we will discuss what Microsoft can do to increase the effectiveness of the memory protections at the expense of annoying Vista users even more.</p> <p><a title="Black Hat Webcast Registration" href="http://w.on24.com/r.htm?e=117307&s=1&k=77CB8EE0B5BC4EC5AB070B8AB487B085" target="_blank"><button type="submit" class="button positive"><img src="../images/tick.png" alt="registration button"/> Web Sync Archive </button></a></p> <br /> <br /> </div> <div class="column span-24"> </div> </div> </div> </div><div class="sponsors" align="center"> <div id="sponsor_bg" align="center"></div></div> <br /><br /> <div id="socialfooter"> <div class="column span-24"> <div class="column span-7 append-1"> <div class="border"> <div class="hi-index"> <h2><a href="../bh-europe-09/bh-eu-09-main.html">Black Hat USA 2009</a></h2> </div> <br /> <div class="social-column"> <p><a href="../bh-usa-09/bh-us-09-main.html"><img src="../images/webcast-sm.gif" class="pull-1" alt="black hat logo" /></a> July 25-30<br /> <br />Caesars Palace<br /> Las Vegas, NV</p> <p> <a href="../bh-usa-09/train-bh-usa-09-index.html">Training</a> July 25-28<br /> <a href="../bh-usa-09/bh-us-09-main.html">Briefings</a> July 29-30</p> <p class="black"> <a href="../bh-usa-09/bh-us-09-main.html">Black Hat USA Briefings Main page</a> is online now.<br /><br /></p> <p class="black"> Find out about <a href="https://www.blackhat.com/html/bh-usa-09/bh-usa-09-venue.html">our 2009 venue, Caesars Palace.</a></p> <a title="Black Hat USA 2009" href="../bh-registration/bh-registration-us-09.html" target="_blank"> <img src="../images/register.gif" alt="Register Button" /> <br /> </a> </div> </div> </div> <div class="column span-7 append-1"> <div class="border"> <h2><a href="../webinars/webinars-index.html">Black Hat Webcasts</a></h2> <br /> <div class="social-column"> <p class="black"> <a href="../webinars/webinars-index.html"><img src="../images/webcast-sm.gif" class="pull-1" alt="webcast logo" /></a> On the third Thursday of every month, Black Hat does a free infosec webcast. Meet security thought leaders and get your questions answered. </p> <p class="black"> <a href="https://www.blackhat.com/BlackHat-webcasts.xml"><img src="../images/rss-sm.gif" class="pull-1" alt="webcast logo" /></a> Can't make it to our live webcast events? Subscribe to the <a href="https://www.blackhat.com/BlackHat-webcasts.xml">Black Hat Webcast RSS feed</a> and take the webcasts with you in podcast form. </p> <br /> <h4>Upcoming Topics</h4><br /> <div class="black"> <ul> <li>May 2009 - <a href="../webinars/mobility.html">Mobility and Security</a></li> <li>Jun 2009 - USA 2009 Preview</li> <li>Aug 2009 - USA 2009 Wrapup</li> <li>Sep 2009 - Privacy/Anonymity</li> <li>Oct 2009 - Forensics</li> <li>Nov 2009 - Year in Malware</li> <li>Dec 2009 - Hardware Hacking</li> <li>Jan 2009 - Virtualization</li> <li>Feb 2010 - Policy/Management </li> </ul> </div> </div> </div> </div> <div class="column span-7 append-1"> <h2>Black Hat Social</h2> <br /> <div class="social-column"> <h3><a href="http://www.linkedin.com/groups?gid=37658&trk=hb_side_g" target="_blank"> LinkedIn</a></h3> <p class="black"> <a href="http://www.linkedin.com/groups?gid=37658&trk=hb_side_g" target="_blank"><img src="../images/linkedin-sm.gif" class="pull-1" alt="linkedin logo" /></a> LinkedIn members can join our Black Hat Group and post news articles of interest to the community, make connections and discuss security topics.</p> <h3><a href="http://www.facebook.com/pages/Black-Hat-Briefings/107691635153" target="_blank">Facebook</a></h3> <p class="black"><a href="http://www.facebook.com/pages/Black-Hat-Briefings/107691635153" target="_blank"><img src="../images/facebook-sm.gif" class="pull-1" alt="flickr logo" /></a> We have a Facebook fan page now. Please check us out there - share your ideas, your photos, and your videos with us.</p> <h3><a href="http://www.flickr.com/photos/30017677@N05/" target="_blank">Flickr</a></h3> <p class="black"><a href="http://www.flickr.com/photos/30017677@N05/" target="_blank"><img src="../images/flickr-sm.gif" class="pull-1" alt="flickr logo" /></a> Check out our Black Hat photostream. Comment. Contribute. Got great pix? Share with the community.</p> <h3><a href="https://twitter.com/BlackHatevents" target="_blank">Twitter</a></h3> <p class="black"><a href="https://twitter.com/BlackHatevents" target="_blank"><img src="../images/twitter-sm.gif" class="pull-1" alt="twitter logo" /></a> Find out what's going on with Black Hat in real time by following us on Twitter. Meet other Black Hat speakers and attendees, share what matters to you. </p> <h3><a href="http://delicious.com/BlackHatBriefings" target="_blank">Delicious</a></h3> <p class="black"><a href="http://delicious.com/BlackHatBriefings" target="_blank"><img src="../images/delicious-sm.gif" class="pull-1" alt="delicious logo" /></a> When something in the news catches our eye at Black Hat HQ, we post the link on Delicious. <br /><br /> </p> </div> </div> <br /><br /> </div><br /><br /> <div class="column span-24"> <div align="center"><a href="../bh-about/about.html"> About Black Hat </a> | <a href="../bh-about/privacy.html">Privacy Policy</a> | <a href="mailto:nbustamante@techweb.com?subject=Sponsorship%20Inquiry">Sponsorship Inquiry</a> | <a href="https://www.defcon.org">DEFCON</a> | <a href="https://www.blackhat.com/BlackHatRSS.xml">Black Hat Main RSS Feed</a><br /> </div> </div> </div> </body> </html>