[Full-disclosure] [Code-Crunchers] windows vulnerability? [was: Re: 137 bytes]
Peter Ferrie
pferrie at symantec.com
Wed Nov 8 18:16:18 GMT 2006
> Using the PE as a vector to attack the PE loader with
> (potential!) code execution for privilage esclation.
> Using the PE itself as a vector of attack.
I made a malformed PE file that caused a BSOD in all Windows
versions, including XP SP1. 99 bytes. :-)
I don't know if it was exploitable, and Microsoft said "it's
not a vulnerability", but then they silently fixed it.
Full-Disclosure is hosted and sponsored by Secunia.