Invention Grant
- Patent Title: Using virtual table protections to prevent the exploitation of object corruption vulnerabilities
- Patent Title (中): 使用虚拟表保护来防止利用对象损坏的漏洞
-
Application No.: US12958668Application Date: 2010-12-02
-
Publication No.: US08683583B2Publication Date: 2014-03-25
- Inventor: Matthew R. Miller , Kenneth D. Johnson , Timothy William Burrell
- Applicant: Matthew R. Miller , Kenneth D. Johnson , Timothy William Burrell
- Applicant Address: US WA Redmond
- Assignee: Microsoft Corporation
- Current Assignee: Microsoft Corporation
- Current Assignee Address: US WA Redmond
- Agent Dan Choi; Carole Boelitz; Micky Minhas
- Main IPC: G06F21/00
- IPC: G06F21/00
Abstract:
The subject disclosure is directed towards preventing the exploitation by malicious code of object state corruption vulnerabilities, such as use-after-free vulnerabilities. An object class is configured with a secret cookie in a virtual function table of the object, e.g., inserted at compile time. An instrumentation check inserted in the program code evaluates the secret cookie to determine whether the object state has been corrupted before object access (e.g., a call to one of the object's methods) is allowed. If corrupted, access to the object is prevented by the instrumentation check. Another instrumentation check may be used to determine whether the object's virtual table pointer points to a location outside of the module that contains the legitimate virtual function table; if so, object access is prevented.
Public/Granted literature
- US20120144480A1 Using Virtual Table Protections to Prevent the Exploitation of Object Corruption Vulnerabilities Public/Granted day:2012-06-07
Information query
