Opened 15 years ago

Last modified 14 years ago

#84 new defect

cannot run executables with ASLR

Reported by: Sam Hocevar Owned by: Sam Hocevar
Priority: critical Milestone:
Component: port: Windows Version: SVN
Keywords: Cc:
Product: zzuf

Description

As of now, zzuf cannot run a .exe if it uses ASLR.

In bug #62 I put two links about defeating ALSR:

Change History (3)

comment:1 Changed 15 years ago by Sam Hocevar

According to the Phrack magazine article at http://www.phrack.org/issues.html?issue=65&id=10, 

When it is wanted to create a process in suspended state it is necessary to
know which type it is [R.6]:
    - Console
    - GUI

Console type processes can be created with the API CreateProcess and the
flag CREATE_SUSPENDED.

If GUI type processes are opened with the flag CREATE_SUSPENDED may not
work correctly, so they must be created using the APIs:
    1.- CreateProcess   : Process is created without the flag
                          CREATE_SUSPENDED.
    2.- WaitForInputIdle: Correct load of the process [R.6] is waited for.
    3.- SuspendThread   : The main thread is suspended.

comment:2 Changed 14 years ago by xadmin

thanks for sharing.for the phenomenal clarity in your writing.

comment:3 Changed 14 years ago by zohoki

hello people, wow, this is a great discussion it was, thanks for sharing.

youtubefacebookseo servicesblog blognesian

Last edited 14 years ago by zohoki (previous) (diff)
Note: See TracTickets for help on using tickets.