Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Vulnerability Development: Re: Windows Vista winsat.exe Integer Overflow

Re: Windows Vista winsat.exe Integer Overflow

From: <Valdis.Kletnieks_at_vt.edu>
Date: Wed, 02 Apr 2008 22:33:07 -0400

On Wed, 02 Apr 2008 13:39:36 PDT, "Thor (Hammer of God)" said:

> So, if you have someone who is going to run as administrator anyway,
> download the untrusted .exe, execute it, and then confirm the execution
> of the program without concern for what happens, we can't really fault
> the OS for that at this point in the game.

I wasn't faulting the OS - I was pointing out it's still a viable attack
vector, despite the OS's best efforts to stop it.

application/pgp-signature attachment: stored

Received on Apr 03 2008

This message: [ Message body ]
Next message: Valdis.Kletnieks_at_vt.edu: "Re: Windows Vista winsat.exe Integer Overflow"
Previous message: Thor (Hammer of God): "RE: Windows Vista winsat.exe Integer Overflow"
In reply to: Thor (Hammer of God): "RE: Windows Vista winsat.exe Integer Overflow"
Next in thread: Valdis.Kletnieks_at_vt.edu: "Re: Windows Vista winsat.exe Integer Overflow"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]