https://stackoverflow.com/questions/21122621
italiano
english
français
española
中国
日本の
العربية
Deutsch
한국어
Português
RussianIf the heap is corrupt, the !heap –x command might not work properly,
try a !heap –s –v to determine. Sample: Windbg !heap
Do !address , and you should see if the memory is stack or heap.
Finding heap or heap block or segment from address
-
28-09-2022 - |
Question
I've been debugging a heap corruption in a software. I can write data to the heap and get control over some pointers. I can achieve my goal of executing code without knowing this but it confused me a bit.
The problem is that I can't find in which heap the block that I'm writing to is , nor the heap segments.
I used : !heap -x [address] and !heap -x -v [address] under Windbg and they didn't give me any result.
I know that some heaps may reserve another heap segment when no uncommitted space is available in the first one . However, I've dumped all heap segments and I couldn't find anyone with a base address similar to the one I'm looking for.
It seems a little bit weird to me that there's no process or application specific heap having these blocks !!
Solution
Licensed under: CC-BY-SA with attribution
Not affiliated with StackOverflow
