[Full-disclosure] rpc NetrDfsGetVersion bug

yuange yuange1975 at hotmail.com
Sat Jan 30 01:40:12 GMT 2010 

http://hi.baidu.com/yuange1975/blog/item/a8195e1bc775afd2ad6e75f5.html#comment

 

 

 

 

 NetrDfsGetVersion(... )

    {

   ......

   Dfsctl(DFS_GET_VERSION, &ver, sizeof( ver ), NULL, 0 );

......

}



Dfsctl(
    IN ULONG FsCode,
    IN PVOID Input,
    IN ULONG InputLength,
    OUT PVOID Output,
    IN ULONG OutputLength
)

{

......

NtFsControlFile(
                Handle,
                NULL,     
                NULL,      
                NULL,      
                &Status,
                FsCode,
                Input,
                InputLength,
                Output,
                OutputLength
            );

......

}

  

 

    

Should be so:
       

 

NetrDfsGetVersion(... )

    {

   ......

   Dfsctl(DFS_GET_VERSION,NULL,0, &ver, sizeof( ver ));

......

}

 

 

 

   
 		 	   		  
_________________________________________________________________
SkyDriveµç×Ó»­²á£¬´øÄãÁìÂÔ¾«²ÊÕÕƬ£¬·ÖÏí¡°ÃÀ¡±Ê±¡°ÃÀ¡±¿Ì!
http://www.windowslive.cn/campaigns/e-magazine/ngmchina/?a=c
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20100130/7c0d6745/attachment.html

Full-Disclosure is hosted and sponsored by Secunia.