diTii.com Digital News Hub

Sign up with your email address to be the first to know about latest news and more.

I agree to have my personal information transfered to MailChimp (more information)

Jan092008

Microsoft Windows XP, Windows Vista IGMP Buffer Overflow

With all the hoopla about the remotely exploitable, kernel-level buffer overflow discussed in today’s security bulletin MS08-0001, what is the actual bug that triggers this? The bulletin doesn’t give all that much information. This movie (Flash required) goes through the process of examining the ‘pre-patch’ version of tcpip.sys and comparing it against the ‘post-patch’ version of tcpip.sys. This comparison yields the actual code that causes the overflow: A mistake in the calculation of the required size in a dynamic allocation.

Slashdot

Vulnerability, Buffer Overflow, Windows XP, Windows Vista, Microsoft, IGMP

Share This Story, Choose Your Platform!

Do NOT follow this link or you will be banned from the site!