Dailydave mailing list archives
Re: Times up!
From: "Kostya Kortchinsky" <kostya.kortchinsky () gmail com>
Date: Fri, 24 Oct 2008 16:25:09 -0400
It's pretty cool to see that the new SetProcessDEPPolicy API, introduced by Microsoft with the SP3 turned out to make my life a lot easier when exploiting this bug on that platform. Even if it's only a warpper to NtSetInformationProcess, it gets the job done quicker! Cool to see a semi-default (sharing or firewall interaction still needed as far as I understood) remote for XP SP3! Great MS week! Kostya 2008/10/23 Dave Aitel <dave () immunityinc com>
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 It takes two hours for Kostya to go from Bulletin to reliable control of EIP for MS08-067. What a great bug! I'm not going to spoil the fun for people still working on it, but it's very cute, like a new puppy, or an angry toddler! - -dave -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFJANyztehAhL0gheoRAkagAJ9mfYTNm6MLge+7SpfyHdCxEm0sjwCfaX8Z UeOP62IUbC6sbB7qzKvE5wQ= =l7dt -----END PGP SIGNATURE----- _______________________________________________ Dailydave mailing list Dailydave () lists immunitysec com http://lists.immunitysec.com/mailman/listinfo/dailydave
_______________________________________________ Dailydave mailing list Dailydave () lists immunitysec com http://lists.immunitysec.com/mailman/listinfo/dailydave
Current thread:
- Re: Times up!, (continued)
- Re: Times up! Mike Johnson (Oct 24)
- Re: Times up! dennis (Oct 24)
- Re: Times up! dennis (Oct 24)
- Re: Times up! Dave Aitel (Oct 24)
- Re: Times up! Brandon Enright (Oct 24)
- Re: Times up! Dennis Rand (Oct 24)
- Re: Times up! dan (Oct 24)
- Re: Times up! Erik Fichtner (Oct 24)
- Re: Times up! Salvador III Manaois (Oct 24)