[Full-Disclosure] [ Positive Technologies ] Defeating Microsoft Windows XP SP2 Heap protection

2005-01-30T00:00:00
ID SECURITYVULNS:DOC:7714
Type securityvulns
Reporter Securityvulns
Modified 2005-01-30T00:00:00

Description

It was discovered by MaxPatrol team that it is possible to defeat Microsoft® Windows® XP SP2 Heap protection and Data Execution Prevention mechanism.

As a result it is possible to implement: - Arbitrary memory region write access (smaller or equal to 1016 bytes); - Arbitrary code execution; - DEP bypass.

Details are described in the article:

http://www.maxpatrol.com/ptmshorp.asp

-- Best regards, aanisimov
mailto:aanisimov@ptsecurity.ru


Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html