Abstract: The mechanisms which proctect the stack in Windows Vista make it more difficult to exploit a stack overflow vulnerability. This paper analyzes three mechanisms which are close to exploiting stack overflow in Windows Vista. They are stack overflow detection, SAFESEH and Address Space Layout Randomization(ASLR). In allusion to a real vulnerability it analyzes Windows Vista’s ability of resisting the stack overflow being exploited, and gives the improved methods.

Key words: stack overflow detection, SAFESEH, Address Space Layout Randomization(ASLR)

摘要： Windows Vista应用的栈保护机制降低了利用栈溢出漏洞的可能性。该文分析Windows Vista中与栈溢出漏洞利用相关的3个安全机制：栈溢出检测、安全结构化异常处理 (SAFESEH)和随机分配地址空间技术(ASLR)。结合实例研究Windows Vista抵御栈溢出漏洞被恶意利用的能力，针对不足之处提出了改进方法。

关键词: 栈溢出检测, 安全结构化异常处理, 随机分配地址空间

CLC Number: 

• TP309