Assuming you're talking about a heap buffer overrun, it's still possible to exploit for EoP in some cases.