What is a heap of spraying?

Spreaming Heap is a hacking technique used to misuse vulnerability in computer software. It operates to gain control of the program using part of its memory. Once part of the memory is controlled by a hacker code, the hacker can take control of the code to implement the buffer overflow in the memory heap area. The most common heap spraying application is web browser's hackering such as Internet Explorer®. This can be thought of as a storage space in a closet or table. This pile of memory belongs to the program until it releases software or operating system collection code. The collection code is simply FailSafe that regenerates memory if the program fails or the software itself cannot release memory after we terminate us.

In the spraying of the heap, the hacker tries to "spray" a memory heap with a specific part of the code. The goal is to place the code on a specific location in the memory hallDy program, such as the spray wedge to the edge of the frames to ensure the lever effect to open the door. After the information is wedged into the memory heap using thermal spraying, the hacker can overflow either the heap or the entire memory buffer and generate errors in the system. Once errors occur, hacker can use them to perform their own code in the system.

spreading HAP work as a result of dynamic memory assignment in the system. Basically, the computer program "owns" the whole piece of memory for the time being, so the hacker already knows the relative memory location assigned to the program. Therefore, a hacker needs a small specificity for Wedg to cracks; He can blindly spray the code because he knew that the memory block would always be there until the program continues. This could be compared with an attempt to select a lock when it was tied; The task is almost impossible if the lock moves around, but if it stays in one fixed place - as well as a lot of memory in the system - work is possible.

IN OTHER LANGUAGES

Was this article helpful? Thanks for the feedback Thanks for the feedback

How can we help? How can we help?