Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security FullDisclosure
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Full-disclosure] Torpark breaks with DEP enabled, and how to break

from [KJKHyperion] Network Security [Permanent Link]
Subject: Re: [Full-disclosure] Torpark breaks with DEP enabled, and how to break it further so that it works
Date: Wed, 14 Feb 2007 01:45:36 +0100 
afed wrote:

I have come up with a unique and proprietary solution to the problems 
presented by Torpark:

"problems"! Sorry mister, I'm afraid I can't share your negative outlook 
on the matters at hand. What I presented to you was an _opportunity_. 
Let's say, in a purely hypothetical fashion, that you made a copy of the 
iexplore.exe executable, renaming it iexplore-nx.exe. Let's add, still 
firmly in the realm of speculation, that you apply the binary hack I 
described to said renamed executable. What you find yourself with, 
gentleman, is a copy of Internet Explorer you, security researcher, can 
use to test those pesky shellcode exploits with, without disabling DEP 
globally.

You will surely concede that it is, indeed, nifty

Don't download or look at CP.

killjoy. It's people like you who make IT security so dull. Next thing 
you know, you'll decry selling 0-day exploits for a profit

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [Full-disclosure] Torpark breaks with DEP enabled, and how to break it further so that it works, coderman
Next by Date:  [Full-disclosure] iDefense Security Advisory 02.13.07: Hewlett-Packard HP-UX SLSd Arbitrary File Creation Vulnerability, iDefense Labs NO-REPLY
Previous by Thread:  Re: [Full-disclosure] Torpark breaks with DEP enabled, and how to break it further so that it works, afed
Next by Thread:  Re: [Full-disclosure] Torpark breaks with DEP enabled, and how to break it further so that it works, KJKHyperion
Indexes:  [Date] [Thread] [Top] [All Lists]