Leaking Windows Kernel Pointers
RuxCon%20-%20Leaking%20Windows%20Kernel%20Pointers
RuxCon%20-%20Leaking%20Windows%20Kernel%20Pointers
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
CVE-2015-1680 – The vulnerability<br />
NtUserGetMessage<br />
Also in NtUserRealInternalGetMessage<br />
Also in NtUserPeekMessage<br />
Uninitialized buffer<br />
Auto-allocated MSG buffer<br />
…a stack variable<br />
Space allocated but not initialized<br />
31<br />
Copyright 2016 Trend Micro Inc.