Bugtraq mailing list archives

Re: White paper: Exploiting the Win32 API.

From: Paul Starzetz <paul () starzetz de>
Date: Mon, 26 Aug 2002 16:47:12 +0200

Andrey Kolishak wrote:


There is also article of Symeon Xenitellis "A New Avenue of Attack:
Event-driven system vulnerabilities" http://www.isg.rhul.ac.uk/~simos/event_demo/

In fact, the problem is similar to U*ix signals, except that there is nojump-to-address argument for usual. Remember that old ping bug whichallowed users to flood the network by sending SIGALRM in some old pingimplementations. Maybe reading some manuals about safe signal handlingwould be a good lecture for Windows developers too:

http://www.faqs.org/faqs/unix-faq/programmer/secure-programming/Section 3.3 especially


regards

/ih

Current thread:

White paper: Exploiting the Win32 API. Chris Paget (Aug 06)
- Re: White paper: Exploiting the Win32 API. Chad Loder (Aug 06)
- Re: White paper: Exploiting the Win32 API. Florian Weimer (Aug 06)
- Re: White paper: Exploiting the Win32 API. Andrey Kolishak (Aug 10)
  - Re: White paper: Exploiting the Win32 API. Paul Starzetz (Aug 27)
- <Possible follow-ups>
- RE: White paper: Exploiting the Win32 API. John Howie (Aug 06)
  - Re: White paper: Exploiting the Win32 API. Chris Paget (Aug 06)
  - Re: White paper: Exploiting the Win32 API. Florian Weimer (Aug 06)
  - RE: White paper: Exploiting the Win32 API. Marc Maiffret (Aug 10)
- RE: White paper: Exploiting the Win32 API. John Howie (Aug 06)
- Re: White paper: Exploiting the Win32 API. Roland Kaufmann (Aug 07)
  - Re: White paper: Exploiting the Win32 API. Adam Megacz (Aug 07)
- Re: White paper: Exploiting the Win32 API. Chris Calabrese (Aug 07)
  - Re: White paper: Exploiting the Win32 API. slack3r (Aug 07)
  - RE: White paper: Exploiting the Win32 API. Kenn Humborg (Aug 10)

(Thread continues...)