Slashdot Mirror

← Back to Stories (view on slashdot.org)

XP/Vista IGMP Buffer Overflow — Explained

Posted by kdawson on Tuesday January 8, 2008 @03:18PM from the that-didn't-take-long dept.

HalvarFlake writes "With all the hoopla about the remotely exploitable, kernel-level buffer overflow discussed in today's security bulletin MS08-0001, what is the actual bug that triggers this? The bulletin doesn't give all that much information. This movie (Flash required) goes through the process of examining the 'pre-patch' version of tcpip.sys and comparing it against the 'post-patch' version of tcpip.sys. This comparison yields the actual code that causes the overflow: A mistake in the calculation of the required size in a dynamic allocation."

3 of 208 comments (clear)

Min score:

Reason:

Sort:

well gee by sentientbrendan · 2008-01-08 15:23 · Score: 5, Funny

>This comparison yields the actual code that causes the overflow:
>A mistake in the calculation of the required size in a dynamic allocation

I hope no one else makes this mistake.
Dang it all. by palegray.net · 2008-01-08 15:28 · Score: 5, Funny

Darn pesky kids and their fancy buffer overflows. I outta HEAP on the insults, but I'll try to stick to my PROGRAM of keeping my smoke STACK cool.

--
512 MB RAM, 20 GB disk, 200 GB transfer, five datacenters. $19.95/month.
1. Re:Dang it all. by Anonymous Coward · 2008-01-08 15:43 · Score: 5, Funny
  
  You're PUSHing it. One more pun and I'll POP you in the mouth.