Exploit for MS08-066 - AFD.sys kernel memory overwrite.

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Exploit for MS08-066 - AFD.sys kernel memory overwrite.
From: Reversemode <advisories@xxxxxxxxxxxxxxx>
Date: Wed, 15 Oct 2008 15:03:11 +0200
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
Sender: Reversemode <advisories@xxxxxxxxxxxxxxx>
User-agent: Thunderbird 2.0.0.17 (Windows/20080914)

Hi,

I have just uploaded a k-plugin for Kartoffel, which exploits a flaw
patched in the recent MS08-066 bulletin.

http://kartoffel.reversemode.com/downloads.php


For those researchers interesting in digging a little bit more into this
flaw, just take a look at afd!AfdGetRemoteAddress and/or check this out

http://blogs.technet.com/swi/archive/2008/10/14/ms08-066-how-to-correctly-validate-and-capture-user-mode-data.aspx

Regards,
Rubén.

Prev by Date: MS OWA 2003 Redirection Vulnerability
Next by Date: Paper: Adventures with a certain Xen vulnerability
Previous by thread: Re: Re: MS OWA 2003 Redirection Vulnerability
Next by thread: Paper: Adventures with a certain Xen vulnerability
Index(es):
- Date
- Thread