Re: Is GDT unsecure?
From: Jacky Luk (jl_at_knight.com)
Date: 04/24/04
- Next message: Gary Chanson: "Re: I Just Want to Copy Text to the Clipboard"
- Previous message: Dean Roddey: "Re: Where does UpdateResource() put temp files?"
- In reply to: Alexander Grigoriev: "Re: Is GDT unsecure?"
- Next in thread: Jochen Kalmbach: "Re: Is GDT unsecure?"
- Reply: Jochen Kalmbach: "Re: Is GDT unsecure?"
- Messages sorted by: [ date ] [ thread ]
Date: Sat, 24 Apr 2004 11:59:21 +0800
There are already heaps of blokes out there playing with kernel. I believe
it's way how Softice and IDA etc implement it. :)
"Alexander Grigoriev" <alegr@earthlink.net> ¼¶¼g©ó¶l¥ó·s»D
:#ztvpsaKEHA.2396@TK2MSFTNGP12.phx.gbl...
> Are you sure Ring3 can modify GDT? There is page protection mechanism...
>
> "Jacky Luk" <jl@knight.com> wrote in message
> news:Od3DxPaKEHA.1396@TK2MSFTNGP10.phx.gbl...
> > If you retrieve the base of the GDT, then counting upwards to find a
> > particular entry, modify the access rights, you could probably gain
access
> > of the whole address space + flags. How does Microsoft prevent this from
> > happening?
> > Thanks
> > Jack
> >
> >
>
>
- Next message: Gary Chanson: "Re: I Just Want to Copy Text to the Clipboard"
- Previous message: Dean Roddey: "Re: Where does UpdateResource() put temp files?"
- In reply to: Alexander Grigoriev: "Re: Is GDT unsecure?"
- Next in thread: Jochen Kalmbach: "Re: Is GDT unsecure?"
- Reply: Jochen Kalmbach: "Re: Is GDT unsecure?"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
