Buffer overflows can also exist in custom web application codes.
I began to see the complete chapters to be able to "analyze" the H and the result can be summarized in a few words.
ASLR moves at random around locations of data regions to randomize address spaces, which makes overflow attacks almost impossible.