Recommendation:from MS03-0 4 9 exploit to see the Debug system processes(figure)-vulnerability warning-the black bar safety net

ID MYHACK58:6220054732
Type myhack58
Reporter 佚名
Modified 2005-11-20T00:00:00


For readers: vulnerabilityanalysts, black fans Pre-knowledge: overflowexploitbasic debugging steps, Softice Basic use method WTF: Windows XP SP2 believe is that everyone in a system, this version just launched, since it has overflow protection mechanism, the traditional overflow exploit has to die, it is also thus favored. Remember the time your peers also began to muttered whether there is continued research overflowexploitusetechnologyis necessary. But over time, XP SP2 also slowly exposed with the previousOSversion compatibility issues, for example, there is software in Windows 2 0 0 0, or XP SP0, SP1 on normal use, in SP2, but no; XP SP2 to use raw socket transport TCPdatato do a lot of restrictions, cause us to develop certainnetworkof the program appear when disabled, etc. Thus, there has been a large number of users still adhere to the long-term use other version of the system. I'm not a conservative person, I just want to take this to illustrate the fact MS is giving us a lot of time to continue to study the traditional overflowexploit - for XP SP2 IEvulnerabilitynot just out of the several? Well, nonsense stop here, see the article first: Rookie Edition Virus writing guide nine--