|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: Kostya Kortchinsky (kostya.kortchinsky
gmail.com)
Date: Fri Oct 24 2008 - 15:25:09 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
It's pretty cool to see that the new SetProcessDEPPolicy API, introduced by
Microsoft with the SP3 turned out to make my life a lot easier when
exploiting this bug on that platform. Even if it's only a warpper to
NtSetInformationProcess, it gets the job done quicker!
Cool to see a semi-default (sharing or firewall interaction still needed as
far as I understood) remote for XP SP3!
Great MS week!
Kostya
2008/10/23 Dave Aitel <daveimmunityinc.com>
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> It takes two hours for Kostya to go from Bulletin to reliable control
> of EIP for MS08-067. What a great bug! I'm not going to spoil the fun
> for people still working on it, but it's very cute, like a new puppy,
> or an angry toddler!
>
> - -dave
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.4.6 (GNU/Linux)
> Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
>
> iD8DBQFJANyztehAhL0gheoRAkagAJ9mfYTNm6MLge+7SpfyHdCxEm0sjwCfaX8Z
> UeOP62IUbC6sbB7qzKvE5wQ=
> =l7dt
> -----END PGP SIGNATURE-----
>
> _______________________________________________
> Dailydave mailing list
> Dailydavelists.immunitysec.com
> http://lists.immunitysec.com/mailman/listinfo/dailydave
>
_______________________________________________
Dailydave mailing list
Dailydavelists.immunitysec.com
http://lists.immunitysec.com/mailman/listinfo/dailydave
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]