Home page logo
/

dailydave logo Dailydave mailing list archives

Re: Times up!
From: "Kostya Kortchinsky" <kostya.kortchinsky () gmail com>
Date: Fri, 24 Oct 2008 16:25:09 -0400

It's pretty cool to see that the new SetProcessDEPPolicy API, introduced by
Microsoft with the SP3 turned out to make my life a lot easier when
exploiting this bug on that platform. Even if it's only a warpper to
NtSetInformationProcess, it gets the job done quicker!

Cool to see a semi-default (sharing or firewall interaction still needed as
far as I understood) remote for XP SP3!
Great MS week!
Kostya
2008/10/23 Dave Aitel <dave () immunityinc com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

It takes two hours for Kostya to go from Bulletin to reliable control
of EIP for MS08-067.  What a great bug! I'm not going to spoil the fun
for people still working on it, but it's very cute, like a new puppy,
or an angry toddler!

- -dave
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFJANyztehAhL0gheoRAkagAJ9mfYTNm6MLge+7SpfyHdCxEm0sjwCfaX8Z
UeOP62IUbC6sbB7qzKvE5wQ=
=l7dt
-----END PGP SIGNATURE-----

_______________________________________________
Dailydave mailing list
Dailydave () lists immunitysec com
http://lists.immunitysec.com/mailman/listinfo/dailydave

_______________________________________________
Dailydave mailing list
Dailydave () lists immunitysec com
http://lists.immunitysec.com/mailman/listinfo/dailydave

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]