Code injection

The SfnLOGONNOTIFY function in win32k.sys in the kernel in Microsoft Windows 2000, XP, and Server 2003 allows local users to cause a denial of service system crash via a 0x4c value in the second argument aka the Msg argument of a PostMessage function call for the DDEMLEvent window...

CVE-2010-1734

The SfnINSTRING function in win32k.sys in the kernel in Microsoft Windows 2000, XP, and Server 2003 allows local users to cause a denial of service system crash via a 0x18d value in the second argument aka the Msg argument of a PostMessage function call for the DDEMLEvent window...

CVE-2010-1735

The CVE-2010-1735 issue affects the Windows kernel component win32k.sys (SfnLOGONNOTIFY) in Windows 2000, XP and Server 2003. It allows a local attacker to trigger a denial-of-service (system crash) by sending a 0x4c value in the Msg argument of a PostMessage call to the DDEMLEvent window. This i...

Windows 2000/XP/2003 win32k.sys SfnINSTRING Denial Of Service

Windows 2000/XP/2003 win32k.sys SfnINSTRING local kernel Denial of Service Vulnerability Effect : Microsoft Windows 2000/XP/2003 full patch Author:MJ0011 Published: 2010-04-22 Vulnerability Details: Win32k.sys in DispatchMessage when the last call to xxxDefWindowProc, this function in dealing wit...

Windows 2000/XP/2003 win32k.sys SfnLOGONNOTIFY Denial Of Service

Windows 2000/XP/2003 win32k.sys SfnLOGONNOTIFY local kernel Denial of Service Vulnerability Effect : Microsoft Windows 2000/XP/2003 full patch Author:MJ0011 Published: 2010-04-22 Vulnerability Details: Win32k.sys in DispatchMessage when the last call to xxxDefWindowProc, this function in dealing...

Windows 2000/XP/2003 win32k.sys SfnINSTRING local kernel Denial of Service Vulnerability

Windows 2000/XP/2003 win32k.sys SfnINSTRING local kernel Denial of Service Vulnerability Effect : Microsoft Windows 2000/XP/2003 full patch Author:MJ0011 Published: 2010-04-22 Vulnerability Details: Win32k.sys in DispatchMessage when the last call to xxxDefWindowProc, this function in dealing wit...

Microsoft Windows XP20002003 - win32k.sys SfnLOGONNOTIFY Local kernel Denial of Service

Microsoft Windows XP20002003 - win32k.sys SfnLOGONNOTIFY Local kernel Denial of Service / Windows 2000/XP/2003 win32k.sys SfnLOGONNOTIFY local kernel Denial of Service Vulnerability Effect : Microsoft Windows 2000/XP/2003 full patch Author:MJ0011 Published: 2010-04-22 Vulnerability Details:...

Windows 2000/XP/2003 win32k.sys SfnINSTRING local kernel DoS

Exploit for windows platform in category dos / poc ======================================================================================== Windows 2000/XP/2003 win32k.sys SfnINSTRING local kernel Denial of Service Vulnerability...

Microsoft Windows XP20002003 - win32k.sys SfnINSTRING Local kernel Denial of Service

Microsoft Windows XP20002003 - win32k.sys SfnINSTRING Local kernel Denial of Service / Windows 2000/XP/2003 win32k.sys SfnINSTRING local kernel Denial of Service Vulnerability Effect : Microsoft Windows 2000/XP/2003 full patch Author:MJ0011 Published: 2010-04-22 Vulnerability Details: Win32k.sys ...

Published some of Ring3 at the end of the process of skill-vulnerability warning-the black bar safety net

In response to the XHR call, in 2 0 0 8 年 5 月 5, re-finishing, and some new skills. 2 0 0 8 years 7 months 1 3 to increase a skill. All of OpenProcess/ZwOpenProcess/OpenThread/ZwOpenThread can replace the ZwQuerySystemInformation-ZwOpenProcess-ZwDuplicateObject it. Specific is why your own...

iWare Pro 5.0.4 - 'chat_panel.php' Remote Code Execution

+------------------------------------------------------------------------------------------- + iWare Pro +------------------------------------------------------------------------------------------- + Details: + iWare admin/mods/simplechat1.0.0/chatpanel.php does not sanatize the $message variable...

iWare Pro 5.0.4 - chat_panel.php Remote Code Execution

iWare Pro 5.0.4 - chatpanel.php Remote Code Execution +------------------------------------------------------------------------------------------- + iWare Pro +------------------------------------------------------------------------------------------- + Details: + iWare...

MS Windows (keybd_event) Local Privilege Elevation Exploit

No description provided by source. / Microsoft Windows keybdevent validation vulnerability. Local privilege elevation Credits: Andres Tarasco aT4r @ haxorcitos.com Iaki Lopez ilo @ reversing.org Platforms afected/tested: - Windows 2000 - Windows XP - Windows 2003 Original Advisory:...

MS Windows (keybd_event) Local Privilege Elevation Exploit

Exploit for unknown platform in category local exploits ========================================================== MS Windows keybdevent Local Privilege Elevation Exploit ========================================================== / Microsoft Windows keybdevent validation vulnerability. Local...

Microsoft Windows XP20002003 - Keyboard Event Privilege Escalation

Microsoft Windows XP20002003 - Keyboard Event Privilege Escalation // source: https://www.securityfocus.com/bid/14743/info Microsoft Windows is prone to a privilege escalation weakness. This issue is due to a design error when desktop applications handle keyboard events sent through the keybdeven...

WIN32 PostMessage API information leak

By using PostMessagehwnd, EMSETPASSWORDCHAR, 0, 0 it's possible to unmask password in dialog to copy it later via buffer. It alows to bypass WMGETTEXT protection...

Win32: Postmessage API security flaw

Hello, I would like to bring to your notice a certain vulnerability that has existed in Win 9x platforms for many years and now in Win2k/XP. Most of us our familiar with password revealers and password stealing trojans. Though flaws in Windows Messaging API have been show before this one relates ...