top | item 4178422

(no title)

gnubardt | 13 years ago

If the JIT engine in Nitro had a JIT Spray vulnerability and Nitro was a shared library could it allow an attacker to inject code into other applications that also use Nitro?

Not that shared libraries are a problem, just that JIT'ing introduces a new attack vector that is hard to secure.

http://en.wikipedia.org/wiki/JIT_spraying

discuss

No comments yet.