Heap overflows occur when data is copied past the end of a heap-allocated buffer and into another, corrupting metadata at the beginning of the second block. This metadata can be crafted in platform-specific ways to gain code execution.