[Full-Disclosure] [ Positive Technologies ] Defeating Microsoft Windows XP SP2 Heap protection
aanisimov_at_ptsecurity.ru
Date: 01/28/05
- Previous message: Sune Kloppenborg Jeppesen: "[Full-Disclosure] [ GLSA 200501-39 ] SquirrelMail: Multiple vulnerabilities"
- Next in thread: pigrelax: "RE: [Full-Disclosure] [ Positive Technologies ] Defeating Microsoft Windows XP SP2 Heap protection"
- Reply: pigrelax: "RE: [Full-Disclosure] [ Positive Technologies ] Defeating Microsoft Windows XP SP2 Heap protection"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Fri, 28 Jan 2005 17:41:17 +0300 To: full-disclosure@lists.netsys.com
It was discovered by MaxPatrol team that it is possible to defeat Microsoft® Windows® XP SP2 Heap protection and Data Execution Prevention mechanism.
As a result it is possible to implement:
- Arbitrary memory region write access (smaller or equal to 1016 bytes);
- Arbitrary code execution;
- DEP bypass.
Details are described in the article:
http://www.maxpatrol.com/ptmshorp.asp
-- Best regards, aanisimov mailto:aanisimov@ptsecurity.ru _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
- Previous message: Sune Kloppenborg Jeppesen: "[Full-Disclosure] [ GLSA 200501-39 ] SquirrelMail: Multiple vulnerabilities"
- Next in thread: pigrelax: "RE: [Full-Disclosure] [ Positive Technologies ] Defeating Microsoft Windows XP SP2 Heap protection"
- Reply: pigrelax: "RE: [Full-Disclosure] [ Positive Technologies ] Defeating Microsoft Windows XP SP2 Heap protection"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
