Summary: Every win32 application has a default exception handler which can be abused to increase exploit stability in the case of a stack overflow Impact: The results of such attack is an exploit with two return addresses Proof of Concept: a tutorial And proof of concept code is available at http://www.securityforest.com/wiki/index.php/Exploit:_Stack_Overflows_-_Exploiting_default_seh_to_increase_stability Credit: Discovered by tal zeltzer.
