Explore a cutting-edge security research presentation on WarpAttack, a novel technique for bypassing Control Flow Integrity (CFI) through compiler-introduced double-fetches. Delve into the findings of researchers from Nanjing University and EPFL as they uncover vulnerabilities in compiler optimizations that can be exploited to circumvent CFI protections. Learn about the intricacies of double-fetch bugs, their potential impact on system security, and the implications for current CFI implementations. Gain insights into the researchers' methodology, experimental results, and proposed mitigation strategies for enhancing the robustness of CFI mechanisms against this newly discovered attack vector.
WarpAttack - Bypassing CFI through Compiler-Introduced Double-Fetches
Overview
Syllabus
WarpAttack: Bypassing CFI through Compiler-Introduced Double-Fetches
Taught by
IEEE Symposium on Security and Privacy
Tags
Related Courses
-
Taking Kernel Hardening to the Next Level
-
The Correctness-Security Gap in Compiler Optimization
-
Compiler-assisted Code Randomization
-
A Tough Call - Mitigating Advanced Code-Reuse Attacks at the Binary Level
-
The Code That Never Ran - Modeling Attacks on Speculative Evaluation
-
GREBE - Unveiling Exploitation Potential for Linux Kernel Bugs
