In this talk, we will present "return-to-csu" - a new method to bypass the ASLR in 64-bit Linux systems. The method is generic, since it does not use the compiled code from the target application but code that is always "silently attached" to it. This, in practice, means that our attack can be applied to any application.

By Hector Marco-Gisbert & Ismael Ripoll

Full Abstract & Presentation Materials: https://www.blackhat.com/asia-18/brie...