Mathias Payer · Jan 9, 2016 · 7:09 PM UTC

You’re unable to view this Post because this account owner limits who can view their Posts.

Mathias Payer @gannimo

9 Jan 2016

@grsecurity @stevecheckoway printf according to spec is Turing complete/a fun exercise. For CF bending use memcpy-like dispatchers

PaX Team · Jan 10, 2016 · 11:20 AM UTC

PaX Team · Jan 10, 2016 · 11:20 AM UTC

PaX Team @paxteam

10 Jan 2016

Replying to @gannimo

@gannimo @grsecurity @stevecheckoway so you admit that printf itself according to real life deployments is NOT exploitable at all?

Jan 10, 2016 · 11:20 AM UTC

Mathias Payer · Jan 10, 2016 · 2:55 PM UTC

Mathias Payer @gannimo

10 Jan 2016

Replying to @paxteam

@paxteam @grsecurity @stevecheckoway No, that's not what I said. For real life exploitation you usually don't want a TC interpreter ;)

PaX Team · Jan 10, 2016 · 3:15 PM UTC

PaX Team @paxteam

10 Jan 2016

@gannimo @grsecurity @stevecheckoway you said it was TC complete according to spec and since real life printf isn't... logic 101.