Bugtraq mailing list archives
Re: WinNT syscalls insecurity
From: espel () LLAIC U-CLERMONT1 FR (Roger Espel Llima)
Date: Sun, 19 Oct 1997 05:37:14 +0200
On Sun, Oct 19, 1997 at 04:02:34AM -0300, Solar Designer wrote:
Here's some [already known] information to make sure everyone understands the stuff I'll be talking about. More information can be found at sites like www.ntinternals.com.
and if your message wasn't enough to convince us that NT is a joke of an OS, here's a snippet from http://www.ntinternals.com./tips.htm : | Never-ending Quantum? | | In NT, as with most time-sharing operating systems, threads run in turns | called quantums. Normally, a thread executes until its quantum runs out. | The next time it is scheduled it starts with a full quantum. However, in | NT a thread also gets its quantum refreshed every time its thread or | process priority is set. This means that a thread can reset its quantum | by calling SetThreadPriority (without changing its priority) before its | turn runs out. If it continues to do this it will effectively have an | infinite quantum. Why does NT do this? Its not clear, but it appears to | be a bug. can we say easy DoS? -- Roger Espel Llima espel () llaic univ-bpclermont fr, espel () unix bigots org http://www.eleves.ens.fr:8080/home/espel/index.html
Current thread:
- broadcast ip scanning script, (continued)
- broadcast ip scanning script hyped (Oct 13)
- Re: `smurf' multi-broadcast icmp attack Therapy? (Oct 16)
- Re: `smurf' multi-broadcast icmp attack Jon Lewis (Oct 16)
- Update - Seattle Lab Slmail v2.5 for NT vulnerable David LeBlanc (Oct 16)
- wwwcount remote exploit Nicolas Dubee (Oct 16)
- Re: wwwcount remote exploit (@ Solaris) Jan Wedekind (Oct 17)
- Security Hole in Explorer 4.0 Aleph One (Oct 17)
- computer immunology VaX#n8 (Oct 17)
- Jabadoo Security Hack Aleph One (Oct 17)
- WinNT syscalls insecurity Solar Designer (Oct 19)
- Re: WinNT syscalls insecurity Roger Espel Llima (Oct 18)
- Run, RunOnce and Uninstall Registry Keys Vulnerability Aleph One (Oct 16)
- Re: `smurf' multi-broadcast icmp attack Brad Powell (Oct 16)