zlacker

[parent] [thread] 2 comments
1. kracke+(OP)[view] [source] 2023-10-27 22:17:15
But aren't shellcode style exploits already fairly rare with W^X, so most end up using return-to-libc style attacks? Wouldn't CFI be a much better solution?
replies(2): >>monoca+p7 >>saagar+1V
2. monoca+p7[view] [source] 2023-10-27 23:14:32
>>kracke+(OP)
It's defense in depth. Removing a function like syscall(2) that's a "whatever syscall you want" function that is ostensibly white listed works very well when combined with CFI, and strengthens security of systems without hardware support for CFI.
3. saagar+1V[view] [source] 2023-10-28 08:53:08
>>kracke+(OP)
OpenBSD users mostly don’t use systems with strong hardware CFI, so they make do with stuff like this.
[go to top]