Re: cipher.exe overflow

• Previous message: Richard Pachito: "Re: MSIE crash-"feature""
• Maybe in reply to: moran zavdi: "cipher.exe overflow"
• Next in thread: wirepair: "Re: cipher.exe overflow (runas.exe)"
• Reply: wirepair: "Re: cipher.exe overflow (runas.exe)"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi,
I saw this discussion that's why i had doubts if i should publish this 
overflow.
But, can you compare cipher to nslookup ?
cipher.exe is part of the EFS.
Because its such important file ive decided to write about it.
who knows, maybe someone here will be able to exploit it and find something 
big.

Regards,
Moran.


>From: "K. K. Mookhey" <ctoat_private>
>Subject: Re: cipher.exe overflow
>Date: Wed, 23 Apr 2003 11:05:39 +0530
>
>Hi Moran,
>Windows 2000 is full of local buffer overflows. We too reported a couple to 
>MS, and then stopped looking. There was a discussion some time back on 
>Nslookup having a local BO. I think the thread is here:
>http://www.securityfocus.com/archive/82/315781
>
>K. K. Mookhey
>CTO,
>Network Intelligence India Pvt. Ltd.
>Web: www.nii.co.in
>=================================
>Security Auditing Software - AuditPro
>http://www.nii.co.in/products.html
>=================================


_________________________________________________________________
The new MSN 8: advanced junk mail protection and 2 months FREE* 
http://join.msn.com/?page=features/junkmail

• Next message: chaboyd77at_private: "Re: Jump back to shellcode Windows overflow"
• Previous message: Richard Pachito: "Re: MSIE crash-"feature""
• Maybe in reply to: moran zavdi: "cipher.exe overflow"
• Next in thread: wirepair: "Re: cipher.exe overflow (runas.exe)"
• Reply: wirepair: "Re: cipher.exe overflow (runas.exe)"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Thu Apr 24 2003 - 12:58:18 PDT