Full Disclosure mailing list archives

Re: Windows .ANI LoadAniIcon Stack Overflow

From: Alexander Sotirov <asotirov () determina com>
Date: Mon, 02 Apr 2007 18:19:25 -0700

Larry Seltzer wrote:

I'm beginning to think that web-based attacks with this in Vista aren't
really so scary. Even if you can get them to execute what can you really
do in IE protected mode?


I just posted a video of exploiting IE7 and Firefox on Vista. Internet Explorer
was running in protected mode with DEP disabled (this is the default Vista
setup). It's interesting that the protected mode of IE does not stop the
execution of cmd.exe, but it does prevent you from writing to the file system
once you get the shell.

http://determina.blogspot.com/

Alexander Sotirov
Determina Security Research

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Current thread:

Re: Windows .ANI LoadAniIcon Stack Overflow, (continued)
- - - Re: Windows .ANI LoadAniIcon Stack Overflow Jason Areff (Apr 02)
    - Re: Windows .ANI LoadAniIcon Stack Overflow Larry Seltzer (Apr 02)
    - Re: Windows .ANI LoadAniIcon Stack Overflow Morning Wood (Apr 02)
    - Re: Windows .ANI LoadAniIcon Stack Overflow Thierry Zoller (Apr 02)
    - Re: Windows .ANI LoadAniIcon Stack Overflow Larry Seltzer (Apr 02)
    - Re: Windows .ANI LoadAniIcon Stack Overflow Thierry Zoller (Apr 02)
    - Message not available
    - Re: Windows .ANI LoadAniIcon Stack Overflow Thierry Zoller (Apr 02)
    - Message not available
    - Message not available
    - Re: Windows .ANI LoadAniIcon Stack Overflow Michele Cicciotti (Apr 02)
    - Re: Windows .ANI LoadAniIcon Stack Overflow George Ou (Apr 02)
    - Re: Windows .ANI LoadAniIcon Stack Overflow George Ou (Apr 02)
    - Re: Windows .ANI LoadAniIcon Stack Overflow Alexander Sotirov (Apr 02)
    - Re: Windows .ANI LoadAniIcon Stack Overflow George Ou (Apr 02)
    - Re: Windows .ANI LoadAniIcon Stack Overflow Alexander Sotirov (Apr 02)
    - Re: Windows .ANI LoadAniIcon Stack Overflow George Ou (Apr 02)
    - Re: Windows .ANI LoadAniIcon Stack Overflow Larry Seltzer (Apr 02)
    - Re: Windows .ANI LoadAniIcon Stack Overflow Larry Seltzer (Apr 02)
    - Re: Windows .ANI LoadAniIcon Stack Overflow Alexander Sotirov (Apr 02)
    - Re: Windows .ANI LoadAniIcon Stack Overflow Larry Seltzer (Apr 03)
    - Re: Windows .ANI LoadAniIcon Stack Overflow George Ou (Apr 03)
    - Re: Windows .ANI LoadAniIcon Stack Overflow ad () heapoverflow com (Apr 03)
    - Re: Windows .ANI LoadAniIcon Stack Overflow Daniel Veditz (Apr 03)

(Thread continues...)