[Code-Crunchers] [Full-disclosure] windows vulnerability? [was: Re: 137 bytes]
Peter Ferrie
pferrie at symantec.com
Wed Nov 8 12:16:18 CST 2006
> Using the PE as a vector to attack the PE loader with
> (potential!) code execution for privilage esclation.
> Using the PE itself as a vector of attack.
I made a malformed PE file that caused a BSOD in all Windows
versions, including XP SP1. 99 bytes. :-)
I don't know if it was exploitable, and Microsoft said "it's
not a vulnerability", but then they silently fixed it.
More information about the Code-Crunchers
mailing list