Slashdot Mirror

← Back to Stories (view on slashdot.org)

XP/Vista IGMP Buffer Overflow — Explained

Posted by kdawson on from the that-didn't-take-long dept.

HalvarFlake writes "With all the hoopla about the remotely exploitable, kernel-level buffer overflow discussed in today's security bulletin MS08-0001, what is the actual bug that triggers this? The bulletin doesn't give all that much information. This movie (Flash required) goes through the process of examining the 'pre-patch' version of tcpip.sys and comparing it against the 'post-patch' version of tcpip.sys. This comparison yields the actual code that causes the overflow: A mistake in the calculation of the required size in a dynamic allocation."

2 of 208 comments (clear)

  1. Re:Sounds like HowStuffWorks material! by jo42 · · Score: 0, Troll

    how he analyzes ms patches for differences You mean it is something other than disassemble pre, disassemble post, diff?

    Mebbe I should become one of these masters...
  2. Re:Why Windows 95 and NT 4 are enough by justthinkit · · Score: 0, Troll

    I believe the Windows 95/98 backup program is different than the one in XP. A friend of mine had his machine crash with key contents lost. He emailed me his backup files but I couldn't restore them despite some effort -- XP could not restore 9x backups. Idiotic I know but what I ran up against.

    --
    I come here for the love