Last Day for MacBook Air, Dell XPS 13, or $600 Off with Online Training

Sydney 2013

Sydney, Australia | Mon, Nov 11 - Sat, Nov 23, 2013
This event is over,
but there are more training opportunities.

Advanced Exploit Writing: Use-After-Free Vulnerabilities

  • Stephen Sims, SANS Senior Instructor
  • Wednesday, November 20th, 5:45pm - 7:45pm

We are pleased to invite you to the following advanced technical presentation at the upcoming SANS Sydney Community Night hosted in collaboration with the Australian Information Security Association (AISA).

5:45 - 6:45 Registration & Networking

6:45 - 7:45 Presentation

Use-After-Free vulnerabilities are responsible for the majority of browser-based (client-side) attacks on the Windows OS. In April, 2013, a Use-After-Free vulnerability was being exploited as part of an attack affecting the US Department of Labor website. We will walk through this vulnerability through exploitation, using modern techniques to bypass exploit mitigation controls and performing patch diffing to identify the flaw.

RSVP to: anz@sans.org by November 19.


Bonus Sessions

The following bonus sessions are open to all paid attendees at no additional cost. There are many different types of events that fall into these categories:

  • SANS@Night: Evening presentations given after day courses have ended. This category includes Keynotes.
Wednesday, November 20
Session Speaker Time Type
Advanced Exploit Writing: Use-After-Free Vulnerabilities Stephen Sims, SANS Senior Instructor Wednesday, November 20th, 5:45pm - 7:45pm SANS@Night
Thursday, November 21
Session Speaker Time Type
Playing with JBoss JMXInvokerServlet Guillaume Thiaux Thursday, November 21st, 6:30pm - 8:00pm SANS@Night