Date: Tue, 28 Jun 2005 10:57:24 -0700
From: Jon Pincus <jpincus@microsoft.com>
To: Dan Schiappa <dasch@exchange.microsoft.com>,
     Bill Gates <billg@microsoft.com>, Mike Nash <mikenash@microsoft.com>,
     Butler Lampson <blampson@microsoft.com>,
     Alexander Gounares <alexgo@microsoft.com>,
     Jim Allchin <jimall@exchange.microsoft.com>
Cc: Shuo Chen <shuochen@crhc.uiuc.edu>
Subject: "Non-control attacks"

Bill had asked whether there are some new categories of exploits that avoid NX.  Shuo's excellent paper (being 
published this summer at Usenix Security) shows that the category of "non-control attack" exploits are viable 
against real-world applications -- and points out that as defenses against control-flow-based attacks (e.g., 
the combination of NX and randomization) become more broadly deployed, attackers may use these other techniques.
 
Shuo will be starting at MSR on July 25, and of course we'll be introducing him to the people involved in our 
various efforts once he's here.
 
jon