http://skypher.com/index.php/2009/01/05/safari-arguments-integer-overflow-poc-cve-2008-2303/ The blog for absolutely nothing! Fri, 25 Jun 2010 07:02:27 +0000 hourly 1 http://wordpress.org/?v=3.0 http://skypher.com/index.php/2009/01/05/safari-arguments-integer-overflow-poc-cve-2008-2303/comment-page-1/#comment-653 yourmom Tue, 12 Jan 2010 21:22:17 +0000 http://skypher.com/?p=91#comment-653 Please be advised - This heapspray code does not work very well on Safari. You end up with contiguous chunks of payload followed by very large chunks of zeros spread out across the memory. It appears that the size of the zero chunks are equal to the size of the payload chunks.. thus only a 50% chance of landing in the payload portion. Please be advised – This heapspray code does not work very well on Safari. You end up with contiguous chunks of payload followed by very large chunks of zeros spread out across the memory. It appears that the size of the zero chunks are equal to the size of the payload chunks.. thus only a 50% chance of landing in the payload portion.

]]>