[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-Disclosure] Control EDX/EAX in JPG Heap Overflow (MS04-028)

To: eflorio@xxxxxxxxxxx
Subject: [Full-Disclosure] Control EDX/EAX in JPG Heap Overflow (MS04-028)
From: Anonymous User <PERFECT.MATERIAL@xxxxxxxxx>
Date: Tue, 21 Sep 2004 23:06:36 -0400

Dear Italian Elf,

You wrote: 
> In this point we can control the value of EDX (it's overwritten by
> "CCCC" 0x43434343 dword inside JPEG header), but it's difficult escape
> from the heap and take the full control on execution.

I also have difficulty escape from the heap.  Maybe we can do lunch some time?

PERFECT.MATERIAL

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Prev by Date: RE: [Full-Disclosure] Scandal: IT Security firm hires the author of Sasser worm
Next by Date: Re: [Full-Disclosure] Lots of traffic on port 1472 from explorer
Previous by thread: [Full-Disclosure] Control EDX/EAX in JPG Heap Overflow (MS04-028)
Next by thread: Re: [Full-Disclosure] Control EDX/EAX in JPG Heap Overflow (MS04-028)
Index(es):
- Date
- Thread