Re: [Full-disclosure] LSADump2 Crashing Windows
From: Nicolas RUFF (nicolas.ruff_at_gmail.com)
Date: 09/05/05
- Previous message: Andres Tarasco: "[Full-disclosure] Microsoft Windows keybd_event validation vulnerability"
- In reply to: Dave Aitel: "Re: [Full-disclosure] LSADump2 Crashing Windows"
- Next in thread: Nicolas RUFF: "Re: [Full-disclosure] LSADump2 Crashing Windows"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Mon, 05 Sep 2005 13:55:11 +0200 To: full-disclosure@lists.grok.org.uk
> This is a bug in lsadump2 - there's a type mismatch in one of the
> functions, although I forget which one. Something is a pointer which
> shouldn't be, or vice versa. Once you fix that, it'll be good to go.
I also noticed that LSADump is *not* compatible with a NX-enabled
Windows, because the allocated memory where the code is injected is not
flagged as "executable".
The same problem affects Cain (www.oxid.it), for (I guess) it reuses the
same code.
Regards,
- Nicolas RUFF
Security Researcher @ EADS-CCR
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
- Previous message: Andres Tarasco: "[Full-disclosure] Microsoft Windows keybd_event validation vulnerability"
- In reply to: Dave Aitel: "Re: [Full-disclosure] LSADump2 Crashing Windows"
- Next in thread: Nicolas RUFF: "Re: [Full-disclosure] LSADump2 Crashing Windows"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
