I was looking at this page today: http://www.cs.wisc.edu/~bart/fuzz/fuzz-nt.html After seeing it referenced in an NTBugtraq post. Naturally, I got to wondering if the problems described there could be taken advantage of for privilege elevation. It would involve being able to send Windows messages to another app, probably on the same physical machine. Anyone done anything along these lines, or can anyone point me at where I can read up on the security surrounding message passing? BB
This archive was generated by hypermail 2b30 : Mon Oct 29 2001 - 16:55:16 PST