Re: virus or some other malware in a movie file

Tech-Archive recommends: Repair Windows Errors & Optimize Windows Performance

From: "Kerem Gümrükcü" <kareem114@xxxxxxxxxxx>
Date: Sun, 13 Jan 2008 06:29:06 +0100

Hi Volodymyr,

In the past, I met a code like this, which was using less then 2kb of code
to do that

Good job! :-)

Yes, once you get the buffer vulnerability you can
completely gain access to a system "IF" the Context
is Administrator. And best would be to insert itself
into kernel or much better to patch kernel code, replace
some driver, extend a driver that is safe with your code
and place it at the bottom of the stack...endless ways
to "fuck" a system and this techniques are not only bound
to windows systems as such most of the (novice) developers
think. this also works for Linux fine and all other OS'es
that have some kind of Ring 0-3 and Kernel Space!

Yes, a video file can contain very dangerous code and
thats why you have to work always with a restricted
account or limited access to system resources. The
best way to protect yourself!

@Volodymyr
Do you know whether this is true or not? Did he really break
that AACS? I ask this here because it came into my mind
while reading this post. If i remember it right, there was a
"public" piece of memory buffer holding the secure key in
plain text (very poor!) in a application working with AACS
Stuff,...i mean this:
http://www.youtube.com/watch?v=1t8d9fYrmQA

And it is written in Java....*g*

The guy who broke this is "muslix64" and the guy who found
the genric gey is "arnezami",...

Regards

Kerem

--
-----------------------
Beste Grüsse / Best regards / Votre bien devoue
Kerem Gümrükcü
Microsoft Live Space: http://kerem-g.spaces.live.com/
Latest Open-Source Projects: http://entwicklung.junetz.de
-----------------------
"This reply is provided as is, without warranty express or implied."

.

Follow-Ups:
- Re: virus or some other malware in a movie file
  - From: Volodymyr Shcherbyna

References:
- virus or some other malware in a movie file
  - From: Kurtz
- Re: virus or some other malware in a movie file
  - From: Volodymyr Shcherbyna

Prev by Date: Re: Still confused why working set larger than virtual memory
Next by Date: new and VirtualAlloc
Previous by thread: Re: virus or some other malware in a movie file
Next by thread: Re: virus or some other malware in a movie file
Index(es):
- Date
- Thread

Relevant Pages

RE: how to use the function copyout()
... >> So if I get it right, it's impossible in FreeBSD to gain access to ... >> So the problem is that in my user program an array short unsigned int ... > from userlevel to kernel space and vice versa is probably to pass just ...
(freebsd-hackers)
Re: cdrecord wihout SUID
... etch too here:) ... device to write is dependent on the kernel you use, ... (apparently because of an inability as a user to gain access to certain ... To UNSUBSCRIBE, email to debian-user-REQUEST@xxxxxxxxxxxxxxxx ...
(Debian-User)
Re: Accessing h/w without kernel intervention
... otherwise going thru the kernel to gain access? ... after that I/O is done by just writing to this memory. ... understand if this is true or if the kernel is still involved in some ...
(comp.os.linux.development.system)
Re: rocketport serial
... Jim Pazarena wrote: ... > to my kernel, and the next reboot proclaims: ... > can anyone tell me how to gain access to the 16 serial ports? ...
(freebsd-questions)