Re: White paper: Exploiting the Win32 API.

• Previous message: Roland Kaufmann: "Re: White paper: Exploiting the Win32 API."
• Maybe in reply to: Chris Paget: "White paper: Exploiting the Win32 API."
• Next in thread: slack3r: "Re: White paper: Exploiting the Win32 API."
• Next in thread: Adam Megacz: "Re: White paper: Exploiting the Win32 API."
• Reply: slack3r: "Re: White paper: Exploiting the Win32 API."
• Reply: Kenn Humborg: "RE: White paper: Exploiting the Win32 API."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

So let me get this straight.

Allowing unpriveleged processes to send control messages to priveleged
processes is not a flaw in the Win32 API because there is a mechanism
for applications to protect themselves from this type of attack
(alternate Windows Stations/Desktops).

But the mechanism effectively prevents the priveleged processes from
providing a GUI because the user won't be able to actually see the
alternate Windows Stations/Desktops without some kind of Station
switching tool, and/or extra training in how to do this.

So, the result is that no applications actually use this mechanism.

What part of "this is broken" doesn't make sense?

__________________________________________________
Do You Yahoo!?
Yahoo! Health - Feel better, live better
http://health.yahoo.com

• Next message: Dave Aitel: "MS SQL Server Hello Overflow NASL script"
• Previous message: Roland Kaufmann: "Re: White paper: Exploiting the Win32 API."
• Maybe in reply to: Chris Paget: "White paper: Exploiting the Win32 API."
• Next in thread: slack3r: "Re: White paper: Exploiting the Win32 API."
• Next in thread: Adam Megacz: "Re: White paper: Exploiting the Win32 API."
• Reply: slack3r: "Re: White paper: Exploiting the Win32 API."
• Reply: Kenn Humborg: "RE: White paper: Exploiting the Win32 API."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Wed Aug 07 2002 - 08:59:31 PDT