Design flaws in Win32 API

Mara · 08-08-2002, 12:17 PM

I haven't tested it. It's nearly unbelivable for me, but....
http://security.tombom.co.uk/shatter.html

Ztyx · 08-08-2002, 03:49 PM

Yahoo! :-)

neo77777 · 08-08-2002, 10:40 PM

This is just great we tried it on my friends PC running Win2k it's amazing, I used my Linux box as a cracking machine, lol I was administering his server remotely from a linux box, this is just great. Now he's installing FreeBSD

Ztyx · 08-09-2002, 05:07 AM

But was this a remote exploit? As far as I understood you had to be able to execute code on the machine. How did you manage to do this from your linuxbox?

Ztyx · 08-09-2002, 05:17 AM

Ooops, after rereading I saw that I've missed a few things...sorry.

GT I.N.C · 08-11-2002, 12:11 AM

hahahha this is sooo coool

Config · 08-11-2002, 12:57 PM

Quote:

Originally posted by neo77777
This is just great we tried it on my friends PC running Win2k it's amazing, I used my Linux box as a cracking machine, lol I was administering his server remotely from a linux box, this is just great. Now he's installing FreeBSD

Lol, I love that. Now, we would need to do this with every win$ administrator and see how much Win$ is going to be

Stephanie · 08-12-2002, 11:00 AM

Just another fine example of poor thinking and planning... and of course stupidity!

amp2000 · 08-12-2002, 01:01 PM

haha, nice one, I'll have to try that out, (looking around the room for a win2k box, shit there's none, I'll have to install it)