[HN Gopher] Exploiting a Flaw in Bitmap Handling in Windows User...
___________________________________________________________________
Exploiting a Flaw in Bitmap Handling in Windows User-Mode Printer
Drivers
Author : freedude
Score : 36 points
Date : 2023-08-04 16:26 UTC (6 hours ago)
(HTM) web link (www.thezdi.com)
(TXT) w3m dump (www.thezdi.com)
| veave wrote:
| It's really annoying that I want to know what win32kfull.sys does
| so I google it and all I find is dozens of pages of automatically
| generated spam.
| jbandela1 wrote:
| Here is a secret trick for finding information about windows
| internals. Prefix your search with "Raymond Chen"
|
| So when I did a search for
|
| "Raymond Chen" win32kfull.sys
|
| Near the top of the results was
|
| https://www.ragestorm.net/Win32k%20Smash%20the%20Ref.pdf
|
| Which seems to provide a nice overview and talk about why there
| are vulnerabilities there.
| whoknowsidont wrote:
| For reasons I don't remember (time, experience), I know what
| the win32kfull.sys driver is responsible for. But it kind of
| irritated me that someone would have to take my word for it.
|
| So I took inspiration from your post to find a definitive
| source from somewhere, anywhere, or something and you're
| absolutely right. A simple google search lists pages and pages
| and pages of just non-sense and potentially dangerous sites.
|
| Not even MSDN (seemingly) has documentation on it.
|
| I did manage to find someone's personal site that appears to be
| decades of their personal technical notes and findings:
|
| *
| https://renenyffenegger.ch/notes/Windows/dirs/Windows/System...
|
| * https://renenyffenegger.ch/notes/index.html
| waithuh wrote:
| I think there is browser extension potential in here. Would it
| be profitable, thats the question (and the answer is most
| likely no)
___________________________________________________________________
(page generated 2023-08-04 23:01 UTC)