Dailydave: Re: MSRPC vulnerability 1 billion and six?

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Dailydave mailing list archives

Re: MSRPC vulnerability 1 billion and six?

From: Alexander Sotirov <asotirov () determina com>
Date: Thu, 17 Nov 2005 14:56:30 -0800

Dave Aitel wrote:

Hmm. I guess one possible fix would be
[size_is(size)] [out] * IDL's parsed to be a maximum of "freememory/2".


This wouldn't help much, becase the memory is zeroed with rep stosd after it is
allocated. Not only does this consume 100% CPU for a while, it also commits
every allocated page and might force other programs to get swapped out.

Alex

By Date By Thread

Current thread:

MSRPC vulnerability 1 billion and six? Dave Aitel (Nov 17)
- Re: MSRPC vulnerability 1 billion and six? Nicolas RUFF (Nov 17)
  - Re: MSRPC vulnerability 1 billion and six? Dave Aitel (Nov 17)
    - Re: MSRPC vulnerability 1 billion and six? Alexander Sotirov (Nov 17)
    - Re: MSRPC vulnerability 1 billion and six? H D Moore (Nov 17)
    - Re: MSRPC vulnerability 1 billion and six? Dave Aitel (Nov 17)
- Re: MSRPC vulnerability 1 billion and six? Dave Aitel (Nov 17)
- Re: MSRPC vulnerability 1 billion and six? H D Moore (Nov 17)
  - Re: MSRPC vulnerability 1 billion and six? Dave Aitel (Nov 17)