Back to home page

DOS ain't dead

Forum index page

Log in | Register

Back to the forum
Board view  Mix view

GPF's | buggy thing | "CreateProcessA" | ZERO'izing FS (DOSX)

posted by DOS386(R), 25.12.2009, 16:16

I wrote:

> After "some" usage of LoadLibraryA (and a few other), a GPF

... maybe LoadLibraryA is not that badly needed to exploit this bug ... more likely CreateProcessA is the source of evil:

- It uses FS. Regrettably it also ZERO'izes it after usage so one call is fine but the next one causes the GPF : "ip = Module 'kernel32.dll'+3084" If I preserve FS, the problem is fixed ... almost

- now I can use CreateProcessA more than 1 time. But after 46 calls it GPF's again "ip = Module 'kernel32.dll'+243C" - same GPF on same instruction in other place inside DKRNL32, FS==0 :-(

This is a LOGITECH mouse driver, but some software expect here
the following string:*** This is Copyright 1983 Microsoft ***


Complete thread:

Back to the forum
Board view  Mix view
15297 Postings in 1378 Threads, 254 registered users, 10 users online (0 registered, 10 guests)
DOS ain't dead | Admin contact
RSS Feed
powered by my little forum