Dailydave: Re: Times up!

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Dailydave mailing list archives

Re: Times up!

From: "Kostya Kortchinsky" <kostya.kortchinsky () gmail com>
Date: Fri, 24 Oct 2008 16:25:09 -0400

It's pretty cool to see that the new SetProcessDEPPolicy API, introduced by
Microsoft with the SP3 turned out to make my life a lot easier when
exploiting this bug on that platform. Even if it's only a warpper to
NtSetInformationProcess, it gets the job done quicker!

Cool to see a semi-default (sharing or firewall interaction still needed as
far as I understood) remote for XP SP3!
Great MS week!
Kostya
2008/10/23 Dave Aitel <dave () immunityinc com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

It takes two hours for Kostya to go from Bulletin to reliable control
of EIP for MS08-067.  What a great bug! I'm not going to spoil the fun
for people still working on it, but it's very cute, like a new puppy,
or an angry toddler!

- -dave
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFJANyztehAhL0gheoRAkagAJ9mfYTNm6MLge+7SpfyHdCxEm0sjwCfaX8Z
UeOP62IUbC6sbB7qzKvE5wQ=
=l7dt
-----END PGP SIGNATURE-----

_______________________________________________
Dailydave mailing list
Dailydave () lists immunitysec com
http://lists.immunitysec.com/mailman/listinfo/dailydave

_______________________________________________
Dailydave mailing list
Dailydave () lists immunitysec com
http://lists.immunitysec.com/mailman/listinfo/dailydave

By Date By Thread

Current thread:

Re: Times up!, (continued)
- Re: Times up! Alexander Sotirov (Oct 24)
- Re: Times up! Kostya Kortchinsky (Oct 24)