1. Symantec/
  2. Security Response/
  3. Attack Signatures/
  4. Attack: Structured Exception Handler Overwrite

Attack: Structured Exception Handler Overwrite

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

Exploit protection detected an attempt to overwrite structured exception handling addresses in order to execute arbitrary code.

Additional Information

Structured exception handling exploits compromise an application by overwriting the pointer of an exception handler with an attacker controlled address.

Affected

  • All applications.

Response

The compromised process was terminated in order to disrupt the attack and prevent infection; no further action is necessary for this incident.

If further information is desired, or this event reoccurs, please submit the most recently visited URL or most recently opened document to Symantec for further analysis. Please visit http://www.symantec.com/docs/TECH102419 for more information.

For Symantec enterprise products, additional details may be found at http://www.symantec.com/docs/HOWTO127057

  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube