MaxPatrol Team has published a detailed document that shows how is possible to defeat Microsoft Windows XP SP2 Heap protection and Data Execution Prevention (DEP) mechanism.
As a result of this exploit, could be possible to implement:
- Arbitrary memory region write access (smaller or equal to 1016 bytes)
- Arbitrary code execution
- DEP bypass
Details are described in this article, available in PDF format or HTML format.
My question is always the same in this cases: the article is undoubtely an interesting reading, but when I see exploit code public available on the Internet, I'm asking if it's really necessary to publish it...