Full Disclosure mailing list archives

[ Positive Technologies ] Defeating Microsoft Windows XP SP2 Heap protection

From: aanisimov () ptsecurity ru
Date: Fri, 28 Jan 2005 17:41:17 +0300


It was discovered by MaxPatrol team that it is possible to defeat Microsoft® Windows® XP SP2 Heap protection and Data 
Execution Prevention mechanism.

As a result it is possible to implement:
- Arbitrary memory region write access (smaller or equal to 1016 bytes);
- Arbitrary code execution;
- DEP bypass.

Details are described in the article:

http://www.maxpatrol.com/ptmshorp.asp


-- 
Best regards,
 aanisimov                          mailto:aanisimov () ptsecurity ru

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

[ Positive Technologies ] Defeating Microsoft Windows XP SP2 Heap protection aanisimov (Jan 28)
- RE: [ Positive Technologies ] Defeating Microsoft Windows XP SP2 Heap protection pigrelax (Jan 28)