Joanna Rutkowska's blue pill and Vista RC2

[Gadi Evron <ge () linuxbox org>]

Joanna just published a blog entry on this issue, and how her PoC doesn't
work on the new Vista release.

Why, etc.

"It quickly turned out that our exploit doesn't work anymore! The
reason: Vista RC2 now blocks write-access to raw disk sectors for user
mode applications, even if they are executed with elevated administrative
rights."

http://theinvisiblethings.blogspot.com/2006/10/vista-rc2-vs-pagefile-attack-and-some.html

        Gadi.

(Hat tip to Elaf Efrat)

_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.